Hi guys
My web site hacked and malware but i have solved it but i still seeing virus in my site cache and live site haven’t any virus links and all
check out this link http://awesomescreenshot.com/0fdigtrcb
here all virus link
Please give me any solution for remove those links
If you’re saying that google’s cached version still has the hacked page then you’ll need to resubmit your site to google to be inspected that it’s clean and safe. But they should update the cache soon enough.
Link: http://www.google.com/support/webmasters/bin/answer.py?answer=163634
@backdoo2 – it sucks but you’re going to have to roll your sleeves up and clean some code and be prepared that you first few attempts might not fix it. If they’re still getting back in you’ve got to look harder.
Hardening WordPress is a great article to start mitigating the damage while you clean things up.
My site http://www.businesseguides.com has been hacked by ‘TH3 MASTER3R. I have changed my wordpress password, but now when I try to log in, it states ‘502 Bad Gateway’. I think I can get professionla help to fix the hacking, but can anyone advise how to access my site, or do I need to set up a new one and re create the site with backups I have -quite a bit of work.
Also how can I prevent it happening again, please?
The prevention part is detailed in hardening wordpress.
What to do when you’re hacked is also detailed here: http://wordpress.org/support/topic/ive-been-hacked-8?replies=5#post-2279714
If your site has been hacked and is currently serving malware you probably dont want to share the link here or others could get infected too. Ppl are lemmings like that.
This article can help you understand 502 errors better and what you can do: http://www.checkupdown.com/status/E502.html
Its recommended that if you’ve done lots of work to do regular backups so if this happens you can revert to an earlier time before you got hacked. Read the “Hardening WordPress” article. It will give you lots of good info.
I’ve seen some hacks where all the hacker does is add an index.html file to your wordpress root. So a fix is as simple as removing that file.
If you’ve been properly hacked you’ll want to ask your host to roll your files back to a week before or so. Then immediately upgrade your wordpress/plugins and follow the hardening wordpress tips.
If they got into your database you’ll want to ask your host to roll this back. As long as they have a backup it won’t take long.
If you were infected with malware:
After your files are rolled back to their former clean versions you’ll want to use google webmaster tools to let them know your site is clean and ready to be reviewed.
I’ve also been hacked. My website is still running but I’m no longer able to log into wordpress and when I try I get redirected to a Russian site. I’ve read all the different links that people have posted above about what to do but I don’t understand most of it! I’m not very good at this stuff. Could someone post something designed for an idiot like me to understand? All I need to do is try to change my password (I guess). Thank you in advance.
Hi Bordeauxwoman,
It’s very difficult to say what you need to do without looking at the issue.
Your files could be poisoned so they redirect. If this is all please ask your host to roll your files back to when your site was last ok.
If your host offers cpanel you can log in there and change your password using phpmyadmin.
Google “change wordpress password phpmyadmin” that should set you on the right path.
Thanks rxhost, I’ve managed to change my passwords but still can’t log into wp-admin (but can now at least log into my ftp server). I think I’ve been hacked by something called phpremoteview. I’ll have a look to see if anyone else has posted something about this.
I’ve solved it! If anyone else has a problem with a phpRemoteView hack this site helped me http://techspheria.com/2011/08/phpremoteview-hack-what-it-is-and-how-to-remove-it/
