WordPress.org

1. syimen
   Member
   Posted 9 months ago #

   Hello, I need help and advice from you all.

   One ony my wordpress site got hacked, i got an email from Google saying that there is a malware in my site, my site is not not safe.

   After spending sometimes looking around via Filezilla, I found some a code in some .php (inducing index.php)

   the code exactly like this.

   [malware code redacted]

   I have tried to remove them all, and report back to Google that it is now, clean, and Google said, I need to wait till Google check the site.

   and surprisingly when I can via FIlezilla again, those code are coming back to where it were.

   Please help me how to clean them all.

   Thank you

2. Samuel B
   moderator
   Posted 9 months ago #

   http://codex.wordpress.org/FAQ_My_site_was_hacked

   http://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/

   http://ottopress.com/2009/hacked-wordpress-backdoors/

3. syimen
   Member
   Posted 9 months ago #

   Samuel, thank you for very fast reply.

   I am overload.

   is there any a step by step guide to fix my site?

   I mean please.

4. syimen
   Member
   Posted 9 months ago #

   The site does not even let me login :-(

5. Samuel B
   moderator
   Posted 9 months ago #

   look 1ae in your .htaccess file
   2nd go to host's phpmyadmin and check database - particularly the user table
   use this guide to check admin user and password
   http://codex.wordpress.org/Resetting_Your_Password#Through_phpMyAdmin

   what happens when you try to log in?

6. syimen
   Member
   Posted 9 months ago #

   I have no problem with the password, in fact I just changed via phpmyadmin/wp-user and change the password, and of course did not forget the MD5

   the problem when i login is that i redirected to wp-login.php page.

   comes with red box from the browser says..
   Reported Attack Page!

7. Samuel B
   moderator
   Posted 9 months ago #

   then read the links and get your site cleaned out

   when done - do this
   http://codex.wordpress.org/Hardening_WordPress

8. syimen
   Member
   Posted 9 months ago #

   Thank you Samuel, I will read the links and follow the instructions as hard as I can understand.

   FYI.
   I just got a reply from the hosting company, this is what they say..

   Hello,

   Unfortunately, as it appears you have already removed the offending code, we're unable to track this down. If this occurs again, please notify us right away and do not make any modifications to your site so that we can track down the point of entry.

   And I also suggested to update some of my other sites hosted in the same server.

   I will get back here when I found more cases.

   Thank you again Samuel.

9. syimen
   Member
   Posted 9 months ago #

   Hello Samuel and everyone who read this thread.

   I am so happy, I can now visit my site again, and the malware indication in my Google webmaster tool has gone, but the search engine result has is still show the malware indication. Maybe take it takes time before that malware indication is gone from the search result.

   If you wonder how the problem is fixed?
   It's fixed by my hosting provider, after i explain everything in deep details.

   i am so happy now.

   Thank you again to Samuel.

   To all, please always update your WordPress engine to the latest and watch your free plugin and theme :P

Reply

You must log in to post.