site hacked, 13 files – wordpress and/or theme
-
Hello,
Last night the web hoster shut down a small site that they say has 13 files with malicious code in them:
/CWC/wordpress/default.php
./app288880928/wp-content/default.php
./wsb5258811601/default.php
./default.php
./wordpress/mp3/default.php
./wordpress/_ej_.php
./wordpress/default.php
./wordpress/h_find.php
./wordpress/sys09725444.php
./wordpress/wp-admin/css/colors/blue/blues.php
./wordpress/wp-includes/default.php
./wordpress/wp-includes/class-wp-xmlrpc.php
./wordpress/wp-content/default.phpThe web hoster said “These files should be removed and replaced with a clean copy from WordPress or the theme vendor via http://FTP.”
I already know the hacker entered through the CWC folder (older version of wordpress) and I will be deleting the whole folder.
For the rest of the 12 files, could someone please tell me which of the 12 are specific to the wordpress platform and how I can get fresh copies of those files?
Many thanks!
- The topic ‘site hacked, 13 files – wordpress and/or theme’ is closed to new replies.