My wordpress keeps getting infected

  • magdabis

    (@magdabis)


    12 years, 7 months ago

    Hi Guys

    My wordpress site got infected many times in the last month or so and I have no idea how to stop that. Every day for the last few weeks I check htaccess file and every day I discover that some redirects have been added to it. I clean up the file only to discover the exactly same thing the next day.
    Those redirects seem to affect both the website and the admin panel (I am unable to instal any new plugins via wp-admin as each time I try I am getting redirected to a dodgy site).
    I’m with bluehost. I’ve changed my passwords for bluehost and wp-admin but it didn’t help. I am thinking the infections I am getting must be automated in some way, but I have no idea how to spot a file that could be causing it.

    Any suggestions?

    Thanks
    Magda

Viewing 7 replies - 1 through 7 (of 7 total)
  • dfwgreg

    (@dfwgreg)

    12 years, 7 months ago

    Two questions: When you install WordPress, do you download the zip file from wordpress.org and install it or do you use the self-install from BlueHost?

    Also, did you change the password on the MySQL database?

    – Greg

    Thread Starter magdabis

    (@magdabis)

    12 years, 7 months ago

    Initial wordpress instalation was done using one click installation that bluehost offers (that was bacvk in 2010). When new wordpress version comes up I use automatic upgrade in wp-admin.
    As for MySQL – no. I’ve only done it now.

    dfwgreg

    (@dfwgreg)

    12 years, 7 months ago

    Initial wordpress instalation was done using one click installation that bluehost offers (that was bacvk in 2010).

    There’s your problem! I’ve never trusted the one-click installs because you never know what BlueHost adds or removes from the installation.

    What I would do is export all of your posts using the exporter tool and download the images, themes and plugins and nuke the system, including the MySQL database and install a fresh installation from wordpress.org.

    http://codex.wordpress.org/FAQ_My_site_was_hacked

    dfwgreg

    (@dfwgreg)

    12 years, 7 months ago

    Oh and make your MYSQL password EXTREMELY difficult. Use capitalizations, numbers, symbols and at more than five characters.

    Thread Starter magdabis

    (@magdabis)

    12 years, 7 months ago

    But how come I never had any issues until about a month ago?
    Is there any way I could get all the files in my wordpress checked and get rid of that damn thing that infects my site, or is brand new installation the only option?

    dfwgreg

    (@dfwgreg)

    12 years, 7 months ago

    I treat it as a virus/spyware/malware, etc. You can cut off the head but the body still lives. The same thing happened to me and I started over. Is it a pain, yes but if you don’t know what to look for, it’s best to nuke and start over.

    bh_WP_fan

    (@bh_wp_fan)

    12 years, 7 months ago

    Read this, especially the information given by songdogtech at the end: http://wordpress.org/support/topic/site-hacked-newportalsecom?replies=66

Viewing 7 replies - 1 through 7 (of 7 total)
  • The topic ‘My wordpress keeps getting infected’ is closed to new replies.