wp-info.php keeps on generating

  • I’ve searched online for this issue, however i couldn’t find permanent fix for it.
    Yesterday i noticed 120 copies of wp-info.php copied all over my hosting folders.
    I did the scan and removed all. but now i found one more.

    the file is showing a password field, and i’m not sure how it’s being generated.
    I’ve cleared .htaccess and upgraded my security plugin.

    Does anyone have any experience with this wp-info.php files? how to get rid of them?

    Sorry for the lack of technical info.
    Thanks for your help.

Viewing 1 replies (of 1 total)

  • Short answer:- You will need to work through this resource:
    https://codex.www.ads-software.com/FAQ_My_site_was_hacked

    And then once the site is clean work through this resource:
    https://codex.www.ads-software.com/Hardening_WordPress

    You also have the alternative of restoring the site from a known clean backup of your site files and database (safely pre-hack) and then changing all user names and passwords (WordPress/cPanel/database/FTP). This can be a much less painful process than cleaning the site if you have that good backup.

    Detailed process:-

      take a backup of the site and database
      change all passwords (WordPress dashboard/cPanel/MYSQL database/FTP) for strong versions
      manually delete and replace all plugins and themes
      manually delete and replace all WordPress files and folders, except wp-config.php and wp-content/
      change the salt keys in wp-config.php to log out all existing users
      check the access logs for suspicous behavior. If found, note the files and dates accessed
      check all remaining files/folders for suspicous code, including the main root .htaccess file. The datestamps may provide clues
      scan your local machine for malware

    Good luck!

Viewing 1 replies (of 1 total)
  • The topic ‘wp-info.php keeps on generating’ is closed to new replies.