1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

My wordpress site got hacked!!! Help needed!!

Discussion in 'Web Design' started by donsiemen, Jun 20, 2015.

  1. donsiemen

    donsiemen Regular Member

    Joined:
    Mar 26, 2012
    Messages:
    304
    Likes Received:
    81
    Occupation:
    I.T tech
    Location:
    Maryland
    Hello BHW here's my story. I have a wordpress site which i created sometime in February, i setup everything correctly and site was moving fine, i paid for a backlinking services here on BHW.
    But something happened strangely when i was viewing the indexed backlinks pointing to my site, i quickly submit my site to google webmaster tool to check whats wrong on my site, then in the manual action, its shows that my site has been hacked!! geeezzz!!
    I went to my cpanel deleted all infected files, then i re-submitted my site again, but this time, GWT still telling me my site is still infected and am lost of ideas of what to do. Please any expert here who can help me fix this issue cos my site is loosing its ranking.

    P.S: my hosting customer care is not helping.

    P.SS: I didn't do a initial backup of the site.

    Thanks
     
  2. Boriss

    Boriss Elite Member

    Joined:
    Nov 7, 2009
    Messages:
    1,501
    Likes Received:
    597
    Location:
    Inside a Monitor
    Scan your site with Sucuri, install WordFence wordpress plugin and do a scan on your site.

    See if it's infected. If it is, then remove the files which Sucuri and WordFence suggest. Make a backup.
     
  3. donsiemen

    donsiemen Regular Member

    Joined:
    Mar 26, 2012
    Messages:
    304
    Likes Received:
    81
    Occupation:
    I.T tech
    Location:
    Maryland
    thanks bro will do that and give u a feedback

    Edit: sucuri is a paid version and am short of cash..
    Mind if you know any free version that can do that
     
    Last edited: Jun 20, 2015
  4. ZFPuhi

    ZFPuhi Newbie

    Joined:
    Jun 20, 2015
    Messages:
    2
    Likes Received:
    1
    Hi Don,There are few things you can do to find out if your site is infected, first thing is to ask your current hosting to do a clamscan, second is to download your site's files and scan them with Anti-Virus program (most of the time infected files are detected by Anti-virus programs like Avira or other).Afterwards you can check your database to see if you have some users or that you did not create and did not give permission.Also something you must do is to ask your hosting company to check your ftp logs to see if anyone else (than you / your ip) has uploaded files and which are those files.
     
  5. BallticklersFC

    BallticklersFC Newbie

    Joined:
    Sep 15, 2014
    Messages:
    36
    Likes Received:
    17
    Location:
    DownUnder
    Yes mate Free dwonload from here wporg/plugins/gotmls/ or from his site.. gotmls(dot)net...should help you clean it out..Update first before you use it..his plug in has helped hundreds where other plug ins have failed.
     
    Last edited: Jun 20, 2015
  6. wizard04

    wizard04 Elite Member

    Joined:
    Apr 1, 2014
    Messages:
    2,698
    Likes Received:
    2,540
    Location:
    Outside your house
    Maybe its your theme if you are using a nulled one.

    Also one way you can clean you site is to move few files and your msql to a fresh installation.

    Download your sql file and in your wp-theme copy the uploads folder, everything else you don't need ( except the plugins but you can install them latter again ).

    Make a fresh WP installation replace the upload folder with your old one and add your old sql and your site should be fine.
    but you will need to add the plugins and the theme again.
     
  7. Seldom Seen

    Seldom Seen BANNED BANNED

    Joined:
    May 21, 2015
    Messages:
    31
    Likes Received:
    8
    A lot of the time it is a backdoor in the PHP of a "nulled" or "cracked" theme or plugin. If it isn't that, change all of your passwords and check your own machine as well, many times it comes from the owners machine too. In the form of a keylogger or some other way where a hacker can gain access to your site. I am curious as to weather or not you used anything nulled?

    Personally, I would just wipe everything and freshly install WP with only the content backed up, as the previous poster said.