Found and removed malicious files after a hack
-
One of our WordPress sites had been hacked by a turkish website, after I had cleaned up manually I decided to look for a plugin to improve security.
I ran a scan with this, and found four additional files that had been added to my active theme. They were one-liners which would let you run PHP code through a form submission, which could do pretty much anything at that point.
I deleted these malicious files (configes.php and img.php, in two folders). Very pleased by the results. I wish I had installed this earlier.
- The topic ‘Found and removed malicious files after a hack’ is closed to new replies.
