Support » Fixing WordPress » Pharma hack, how to use SSH?

  • I’ve noticed that when i search for my website on google my meta description for most my posts are being shown as: Play games in casinos online to win hefty prizes, you will definitely love to win more. Choose always the legal and casino no deposit bonus to enjoy playing.

    Meta description as displayed on google: http://goo.gl/30Kv9T

    website: http://www.puifonluong.com

    I have posted about this before and I think it is similar to the pharma hack that i’ve been reading about, or it probably is. it was suggested to perform grep commands via SSH
    to find the below

    #grep -irl “sn8up6” ./*

    or

    #grep -irl “casino” ./*

    I am unsure of how to use SSH, to do these commands so could anyone give me any advice before I enable my SSH, also my host is asking for a photocopy of a utility bill, or either a photocard driving license or photo page of passport , is this normal to ask for when asking for SSH access? I dont know if I feel comfortable emailing these documents.

    I have thought about paying for this to be removed via sucuri but I cant pay for one time jobs. Does anyone know how I can do remove this, I am nervous to delete or reinstall anything, also because I need this website to be submitted as part of my assessment soon at university, so do not want to mess anything up. If I do reinstall everything and export the WordPress XML file of my posts from the site, is it possible any malicious code could be in there?

    Does this hack affect anything else apart from the meta descriptions, I have seen the casino related descriptions before a few months before and thought nothing of it until now, any advice on what to do?

Viewing 7 replies - 1 through 7 (of 7 total)
Viewing 7 replies - 1 through 7 (of 7 total)
  • The topic ‘Pharma hack, how to use SSH?’ is closed to new replies.