jabbamonkey

Most of those links provide little instruction on REMOVING malware scripts from an existing site. Yeah, the standard “change your passwords” is pretty obvious … but that only avoids future attacks (for a time). As for restoring a backup … not an option, since I don’t have access to a backup (it’s not my site, it’s someone who asked me to help them).

So, I need to find the malicious script in the files, and remove it.

One thing I’m trying down is downloading the current site, and doing a scan (however, a standard scan wont pick up most web scripts … and sometimes malware is hidden). Once I have this “bad” backup, I’m going to try and reupload a clean version of WordPress.

However, if anyone has any idea how to FIND this code in my files, let me know (if not for NOW, then for a future time). Thanks.

In MY browser settings? Either way, I don’t want ANY user to see a malware message. That’s just bad. So the script exists somewhere, I just need to know how to find it and then get it out of my files…

Anyone?

I’ve had someone recommend trying to 777 the entire wp-content folder and all of it’s contents. But that didn’t work as well.

Someone even recommended to have my webhost put PHP into SAFE MODE. My webhost wont do that. Even if they would, I would not want to risk the security issues.

Can anyone else help?

Anyone out there?