WordPress.org

Support

Support » How-To and Troubleshooting » [Resolved] Site keeps getting hacked with most recent WP version

[Resolved] Site keeps getting hacked with most recent WP version

  • SRD75
    Participant

    @srd75

    For about a year, my site has had the following files injected into the file system:

    wp-admin/images/pxGnMSNjOgfM.php
    wp-admin/user/IZVoyKGRxHzP.php
    wp-admin/user/EeBGfsiVBLxa.php
    wp-includes/Text/Diff/Renderer/vDNLdpjrxhBu.php
    wp-includes/SimplePie/Net/FCSsGjSuZbut.php

    Currently, I have the following plugins activated:
    – Akismet
    – Better WP Security
    – WP Remote

    In the past, I have also had the following plugins activated:
    – AddThis Social Bookmarking Widget
    – AntiVirus
    – Block Bad Queries (BBQ)
    – Broken Link Checker

    When I have discovered a hack, I have overwritten the remote site’s files with a newly unzipped copy of the current WP version files.

    I recently updated to WP 3.8, and Better WP Security’s file change warning just warned me that today the same files are back.

    Any ideas on how to stop this happening?

    Thanks.

Viewing 3 replies - 1 through 3 (of 3 total)
Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘[Resolved] Site keeps getting hacked with most recent WP version’ is closed to new replies.