Malicious scripts identified with this plugin??
-
My website has been taken offline as my host advises me that malicious scripts were injected when I installed this plugin. I removed it, immediately after as it did not meet my needs, but this is now a major issue. They will not reinstate it unless I can provide assurance that the malicious scripts have been completely removed.
I am not a developer so have no idea what to do Please advise as a matter of extreme urgency. I’ve been up from 3am every morning for two weeks bringing this to a new level, only to have this happen. It’s critical that I resolve this urgently.
As I am now on the road for a business trip, please email [email protected]
Thank you.
-
Hi Judahraine,
Are you using the dpaBottomofPostPage plugin. There is no malicious script in this plugin. It must be related to something else. You can check the code yourself or if you do not know PHP let someone who knows PHP check the code.
Check your server if you have ModSecurity installed. Can your host show you the malicious script that was injected?
I have been using this plugin at http://bachutha.com and even though many hackers from Russia, China, Moldova, Germany, France, Turkey, USA, Canada, … are continuously trying to hack my site, my host have not complained about malicious scripts.
Also protect your …/wp-content/uploads/… directory with the following code in the .htaccess file :-
Options -Indexes DirectoryIndex index.php index.html #block hackers from these type of files # # multiple file types <FilesMatch ".(htaccess|php)$"> Order Allow,Deny Deny from all </FilesMatch>This will block hackers inserting and executing PHP code through the /uploads/ subdirectory.
Please let me know how it responds.
Best regards,
Peter
The topic ‘Malicious scripts identified with this plugin??’ is closed to new replies.
