Hi, I’m trying to fix a nemonn hack.
I’ve removed the extra code from header.php, but I have no idea how I would look for the backdoor files, reported to usually exist in wp-admin.
Can I just totally replace the wp-admin folder with a clean version of it from a fresh wordpress download?
If not, please advise how I can find these files.
- The topic ‘nemonn – how to find malicious files’ is closed to new replies.