misterwebmaster
Forum Replies Created
-
Forum: Fixing WordPress
In reply to: Site Hacked – trying to clean it up before I upgradeclean of sneaky “eval” and “base64”. I got lazy and searched for “eval” as an exact phrase.
So now to migrate from 2.0.9 to 2.9.2 .
And hope that it isn’t my shared server space that’s compromised. Changing passwords and all that. And cross fingers.
Forum: Fixing WordPress
In reply to: Site Hacked – trying to clean it up before I upgradeI searched the post and meta post tables for “viagra” and “cialis” with nothing showing up, but other than that, I wouldn’t be sure what to look for.
I almost posted the content of the wayward php files, but then came to my senses – that would be like releasing a live polio virus into a schoolbus.
The hackers managed to add an additional user “Google” to the userdatabase, that was invisible to the web interface. I deleted the “Google” user, but that had no effect.
Forum: Fixing WordPress
In reply to: Site Hacked – trying to clean it up before I upgradeYup, it was stray php files in the uploads folder. It’s amazing, as the files are pure gobbledygook to my eye. If those russian hackers used their powers for good, they could cure cancer.
What I wonder is if those stray php files in the image upload folder will be the only problem. Deleting them took away the problem, but is there a stray hook elsewhere?
Thanks for the help, now to change passwords, cross my fingers, and upgrade, and get a new theme, as I doubt my old one is supported.