WordPress Fatal error with unknown characters!

  • I am really having a huge problem with my site. Recently it displayed a fatal error and i cannot access it. So i used my FTP an troubleshoot the problem, i manage to regain access to my site but the problem is it leaves something like this

    ); } } ?> of file ?>”

    and on very php file on my database it has something like this

    $ypaogiromr = ‘#[code moderated – please don’t post hacking code here]$tunwzkikwi-1; ?>

Viewing 7 replies - 1 through 7 (of 7 total)
  • Thread Starter wereblog

    (@wereblog)

    This is my site → https://wereblog.com/

    every plugins, themes has something like those characters. Can anyone help me?

    Thread Starter wereblog

    (@wereblog)

    Anyone having the same issue?

    Moderator James Huff

    (@macmanx)

    Don’t bump your posts, it takes you out of the No Replies view that most people monitor. ??

    Try downloading WordPress again and delete then replace your copies of everything except the wp-config.php file and the /wp-content/ directory with fresh copies from the download. This will effectively replace all of your core files without damaging your content and settings. Some uploaders tend to be unreliable when overwriting files, so don’t forget to delete the original files before replacing them.

    Thread Starter wereblog

    (@wereblog)

    Thanks for the reply,

    I have re-installed wordpress but doesn’t fix the problem. it look like these characters “$ypaogiromr = ‘#7e:55946-t 25))!gj!….etc” are already embeded in all my files with .php extensions including themes and plugins ??

    Moderator James Huff

    (@macmanx)

    In that case, this definitely looks like a hack. Remain calm and carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures.

    I had same problem. In my case it was a security hole in Wysija plugin. Check wp-content/uploads/wysija/themes/ folder for files like:
    main2/index.php
    mailp/index.php
    mytheme/mytheme.php etc.
    There is a web shell uploader inside. Remove them and add .htaccess file to wp-content/uploads/:

    <Files *.php>
deny from all
</Files>

    Moderator James Huff

    (@macmanx)

    Or, just follow the guide linked to above, because maybe you aren’t even running the wysija plugin. ??

Viewing 7 replies - 1 through 7 (of 7 total)
  • The topic ‘WordPress Fatal error with unknown characters!’ is closed to new replies.