GoFuckYourself.com - Adult Webmaster Forum - View Single Post

Paz · 02-20-2015, 02:27 AM

List the plugins and themes here with version numbers - you only need one bad one and you're screwed. REvslider is a popular one to hack at the mo.

Re-installing WP isn't enough you have to sanitise all the wp- folders and check all the files, I had one hack that ran a jpg as a php - these people are very good at leaving lots of backdoors in the db and files so they can get back in.

You should also check your htaccess (post here), download the theme and look for anything in your php such as eval(xxxx and nuke those files.

If you are confident you've cleaned everything up then change the ftp password, mysql credentials and wp login and re-isntall but once these people have gotten a hold it's very difficult to keep them out.

If you wp install is only a few pages I'd delete everything in the public_html and in the db and start again with a fresh install with the same URL structure.

Fingers crossed.

02-20-2015, 02:27 AM
Paz Confirmed User Industry Role: Join Date: Jun 2012 Posts: 457	List the plugins and themes here with version numbers - you only need one bad one and you're screwed. REvslider is a popular one to hack at the mo. Re-installing WP isn't enough you have to sanitise all the wp- folders and check all the files, I had one hack that ran a jpg as a php - these people are very good at leaving lots of backdoors in the db and files so they can get back in. You should also check your htaccess (post here), download the theme and look for anything in your php such as eval(xxxx and nuke those files. If you are confident you've cleaned everything up then change the ftp password, mysql credentials and wp login and re-isntall but once these people have gotten a hold it's very difficult to keep them out. If you wp install is only a few pages I'd delete everything in the public_html and in the db and start again with a fresh install with the same URL structure. Fingers crossed.