Site Hacked

[gittar1122]

One of my site has been hacked by VirusDuba. I think he did something wrong with my wordpress database.

Still I can access my cPanel, so can anybody help me how to get rid of this hackers message on my home page.

Thanks

 

[poisonsembrace]

Hope you have backups. It's always better to just nuke the install and upload an older copy.

 

[gittar1122]

I have MySQL Database Backup of last week, is that sufficient?

 

[poisonsembrace]

Have your wordpress install backed up too? You could jump into the files and edit the shit out (they usually stick some shit in the header) but I've always just nuked and reinstalled.

 

[o hai guyz]

Just change the password and reupload everything?

 

[gittar1122]

Ok guyz...I got my sites working normally now.

I simply changed the password of WP-admin by using the option of Forget my Password as it was not accepting my old password.

After Log-in, I changed my theme as this was something injected in my theme and now my sites are working properly. That theme files are corrupt and I have deleted that theme.

Thanks everyone for advice.

 

[truthninja]

Thats great to hear, you definitely need to invest into new security to prevent that again.

 

[hakkairu]

Get someone to clear the malware, or just reinstall wordpress. Reinstalling wordpress is easy. Backup database. Install WP. upload database. install themes and plugins and your good. Or you can get your host to do it for you unless you host your website.

 

[handrewrites]

This is why I use Moveable Type. Static pages. Just place the dynamic admin area in a password-protected folder and only access it with https.

 

[tacoX]

Next time upgrade your wordpress.

 

[EricVonDoobie]

Next time upgrade your wordpress.

Yeah, this. How old was your WP install? I haven't seen that shit happen in a long time.

 

[(O_o)]

can you tell me what version of WP you are using when you got hacked?

 

[keerthi143]

congrats that you got your site back, just reinstall or update wp.

 

[sennin436]

Next time upgrade your wordpress.

^this.
One of my WP blogs was hacked couple of months ago. Had to call my hosting company to fix the problem. Luckily no old database files were lost. But the biggest problem they mentioned was that I was still using an old version of WP and these become easy targets for hackers. They said I needed to constantly update it when a new version of WP comes out in order to stay one step ahead.

 

[gittar1122]

I had updated my WP last week and its Version 3.1.3. So its not the case that my WP was old, it was the latest one. Three of my sites were hacked on that day and all having same Hacker Message.

I think that hacker injected some codes into my current theme that's why when I installed new theme, that hacker message was removed from my homepage.

Yeah, this. How old was your WP install? I haven't seen that shit happen in a long time.

Next time upgrade your wordpress.

can you tell me what version of WP you are using when you got hacked?

^this.
One of my WP blogs was hacked couple of months ago. Had to call my hosting company to fix the problem. Luckily no old database files were lost. But the biggest problem they mentioned was that I was still using an old version of WP and these become easy targets for hackers. They said I needed to constantly update it when a new version of WP comes out in order to stay one step ahead.

 

[Ishmael]

Had exactly the same thing two weeks ago. Newest WP version. Hosting said I have to keep my theme updated too. Got somthing injected in the header.

 

[gittar1122]

Received same response from hosting to use New WP Version but it was already updated.

Had exactly the same thing two weeks ago. Newest WP version. Hosting said I have to keep my theme updated too. Got somthing injected in the header.

 

[Ishmael]

No not the WP version. The actual version of the theme used