WordPress Compromised? How to fix it!
cedar said 3 years ago:
***UPDATE*** Please see this Go Daddy blog post for the most up-to-date information on this issue http://support.godaddy.com/godaddy/wordpress-compromised-how-to-fix-it/
The new blog post will be continually updated, this forum thread will no longer be updated. Thank you.
guille said 3 years ago:
Please, review this topic:
http://www.simplemachines.org/community/index.php?topic=307717.0
mrga said 3 years ago:
Im a telling almost 7 days that there is a leak in parsing extensions… file with name somthing.php.jpg is parsed…
bytez said 3 years ago:
Watch out, your workaround will break all those WP templates with certain code protected with eval(base64..())
mainly theme developers hide behind evals(base_64) the footer checks, (if people manually removed the credits links from the footer)
david_dede said 3 years ago:
A few suggestions:
The easiest way to fix it is by forcing an upgrade on Wordpress. Go to tools->upgrade and choose to upgrade to 2.9.2 even if you are on the latest version already.
Do the same for all the plugins you have in there. It will override the malware entry.
After that, you just have to look for those base64 evals on your themes file, making the job much much easier.
This post also gives some tips on how to analyze/ fix malware on web sites:
http://blog.sucuri.net/2010/02/removing-malware-from-wordpress-blog.html
Deleted User said 3 years ago:
@David Dede,
Great suggestion! Your input is highly valued and we all appreciate it.
-Clint
websucess4you said 2 years, 10 months ago:
I just successfully finished installing WordPress on my domain but it still cannot be seen.
This is my domain: http://work-at-home-to-make-money-online.us/ I tried using /login.php, /index.php,
index.html which I knew would not work. Any suggestions? Sorry to be a bother.
5 min expected wait time