Web Hosting
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

WordPress fix Reply To: Hacker registered user

Discussion in 'Misc WordPress Requests' started by angelwp, Oct 27, 2017.

  1. angelwp

    Guest

    Reply To: Hacker registered user, by angelwp

    indeed @pemitchell, i was “clean” for almost 4 months, from cleaning every 3 – 4 days, the way ir works for me, since today, was:

    -Remove infected code detected by Wordfence
    -Manually check the project for weirds .php files and delete them
    -Manually check code with “edit” option from cpanel because some malicious code was encrypted
    -Clean the cookies as our friend pemitechel says, in wp-config and use the salt link provided from wordpress
    -Change cPanel password
    -Monitor daily the server processes and there pop ups some php scripts, manually search them and delet them too

    with this was clean for almost 4 months

    But now i got a message from wordfence with this:
    Critical Problems:

    * File appears to be malicious: wp-content/plugins/revslider/css/ymjuehdi.php

    * File appears to be malicious: wp-content/uploads/2017/04/rhbqlccc.php

    same way as before but it looks like was only 1 website, and no all of them as usual

    this kind of injected code how can be done?, no new users on the website

    can´t find the security hole

    Reply To: Hacker registered user
     
    #1

Share This Page

Web Hosting