Z%&king Trojans | WordPress.org

sidea
(@sidea)

12 years ago

I have built 30 wordpress installations to date and only one has repeatedly come unter attack by a variety of Trojan Malware bugs.

I have a back-up sitting on my desktop at all times but the client (owner of a posh villa in the seychelles) is getting righteously ansty.

The last time it happened I took a raft of steps to ensure it wouldn’t happen again – I won’t go into them all, but they included changing user names, pass words and lots more but it happened again yesterday.

Is it possible that in an initial attack some code was left in there – either in the DB or elsewhere that is opening a back door to the site?

The site is completely static and as such I could change the permissions of the ftp folder to non writable, would this work or would it screw-up my wordpress site? I do recognise that to install new plugins and to update the WordPress I would need to change them all back again but this seems like my only solution.

I am thinking of buying into the Sucuri malware deletion package for my 10 prime sites, has anyone had success with this as a solution?

Viewing 1 replies (of 1 total)

esmi
(@esmi)

12 years ago

You need to start working your way through these resources:
http://codex.wordpress.org/FAQ_My_site_was_hacked
http://wordpress.org/support/topic/268083#post-1065779
http://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/
http://ottopress.com/2009/hacked-wordpress-backdoors/

http://sitecheck.sucuri.net/scanner/
http://www.unmaskparasites.com/

http://blog.sucuri.net/2012/03/wordpress-understanding-its-true-vulnerability.html

Viewing 1 replies (of 1 total)

The topic ‘Z%&king Trojans’ is closed to new replies.

Tags

In: Fixing WordPress
1 reply
2 participants
Last reply from: esmi
Last activity: 12 years ago
Status: not resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics