Support » Fixing WordPress » How Do I Fix A Code Injection Hack?

  • Please help me.

    My wordpress blog has been hacked, search engine traffic is being redirected to different sites.

    I scanned the site using wordfence and found that there is an encrypted code on the theme file, I have changed the theme and deleted it. Now I find that there’s been several codes in different parts of the blog.

    Sururi shows that core wp files have been modified.

    What do I do?

    I am on a budget and I am comfortable doing it myself.

Viewing 12 replies - 1 through 12 (of 12 total)
  • Assuming your database isn’t affected. I’d export the database, do a clean WordPress install, reinstall all your plugins and theme(s), and import the database again.

    My 2 cents.

    Once you get your site working, update WordPress Core, themes & plugins and install Wordfence – its FREE 🙂

    1. But there are over 3000 posts there.

    2. How do I know if the database isn’t affected?

    Moderator Andrew Nevins

    (@anevins)

    Volunteer support

    This is the stock answer for cleaning up a compromised installation. In short, it takes a long time to clean a hacked site. If the cleanup is easy then chances are you’re still hacked.

    You need to start working your way through these resources:

    Additional Resources:

    I have wordfence installed already

    If After restoration, wordfence reports that core files have been modified, then the probability of the database being compromised is high.

    Work your way through the list of sites suggested by Andrew.

    Hello, got the same problem, clean all the files and keep and eye on cpu usage and procceses, you can see there scripts that Wordfence CAN´T find,

    the big question is, how can we clean the database?, and… how can i know if it is infected????? :/

    already done ALL the guides and still getting code injected, dont know if anyone can make a full clean without spent a cent in premium security packages

    Moderator Andrew Nevins

    (@anevins)

    Volunteer support

    dont know if anyone can make a full clean without spent a cent in premium security packages

    @angelwp, No we cannot resolve the hacked site for you. If you cannot resolve this yourself then you should hire a reputable company to do it for you.

    Eeeeeeehhhh…. i guess here is a little misunderstood, i dont want to get my site clean for “free”, i want to know HOW to do it, share experiencies, etc, doesnt is this forum to???

    i say that with the idea if someone has acomplishe a full clean in a server by him or herself, thats all…

    only want to know how to correctly check my databases, or where i can ask this?…

    Moderator Andrew Nevins

    (@anevins)

    Volunteer support

    You need to read the resources that I’ve linked. It explains that even if you knew what to look for and removed that from the database, you would still be hacked. That would only remove the symptom of the hack.

    Resolving a hacked website is difficult and you can spend a lot of time doing it yourself or pay someone to do it for you – either way they’re both expensive options.

    Yaay!

    I’m just checking in to let you guys know that the issue has been fixed.

    After going through so much trouble and not making any significant headway.

    I went online and found out about a guy called Jim.

    We had a conversation and in a few minutes we struck a deal.

    What’s so amazing is that you can reach him directly on phone, getting him to help me was so easy.

    And not only did the search engines mark my site as safe, the search engine traffic stopped redirecting to different sources which means increased traffic for me.

    Just Google “Jim The hack repair guy” or go to hackrepair.com to engage him.

    Thank you all for your input guys.

    Wow. That was very nice of you to say, my friend. <blushing>
    🙂

Viewing 12 replies - 1 through 12 (of 12 total)
  • The topic ‘How Do I Fix A Code Injection Hack?’ is closed to new replies.