wp 3.0.1 MS infected with malware.

gahoachma

gahoachma

Junior Member
Joined
Dec 16, 2009
Messages
125
Reaction score
22
its WP 3.XX + buddypress.

But yah all of my 2000+ blogs are now infected with malware.

Anyone want to tell me where to start? Cleaning this BS up?

I deleted and reinstalled all my themes and no help, so that isn't the problem it must be deeper.

Wish I had the mind for PHP right about now..

Or was a licensed private investigator/bounty hunter. Mmmm If I could find this person, I'd do very evil things.. But oh well lol!.

Anyways anyone care to *help* abit!? The users at wordpress sure as hell aren't helping. Maybe a fellow BHer that does this crap would care to enlighten me? :7:
 
Advertise on BHW
only solution is the delete all files and create upload newone ... also check mysql database ... AND change passwords!
 
You'll have to manually fix one, and then you may be able to automate fixing the rest. Different exploits do different things. Some are just js injection, others get deep into your db and set up backdoors, etc.
 
Since I'm not a programmer, this is gonna be rather expensive.. *sigh*
 
You could start by googling or otherwise finding the my wp site has been hackked doc in wordpress dot org / codex. They have some pretty decent docs linked in there as well as some steps you could probably do yourself. Or at least outsource for a reasonable price. Since there's so many wp installs out there that means a fair # of us who have been hit by similar exploits.

The best free advice I can give is also step 1 in the codex - don't panic.
Posted via Mobile Device
 
have you tried reinstalling ur wordpress core files? how do you manage 2000+ blogs?
 
gregstereo said:
You could start by googling or otherwise finding the my wp site has been hackked doc in wordpress dot org / codex. They have some pretty decent docs linked in there as well as some steps you could probably do yourself. Or at least outsource for a reasonable price. Since there's so many wp installs out there that means a fair # of us who have been hit by similar exploits.

The best free advice I can give is also step 1 in the codex - don't panic.
Posted via Mobile Device
Click to expand...

Thanks for the advice even though I already got it from my web hosts support system.

They gave me numerous helpful links. Although mostly nothing I can do myself. Or dare to do myself. I ruined the site once myself, don't care to do it again its depressing. :rolleyes:
 
leolion said:
have you tried reinstalling ur wordpress core files? how do you manage 2000+ blogs?
Click to expand...

Nope. I did look thru the wordpress config file and didn't find anything unusual. Or than that I'm afraid to do that, I might perm break something. lol.

So far as managing the 2k+ blogs? Not so much. *idiot* I've gone thru and noticed a few link farm pages and deleted them.

There is another plugin I need..
 
P.S. Thanks for all the replies and help, I tried to get the same thing on wordpress.org's forums and got total silence. "OpenSource" is great N all, but I've noticed some of the people involved can be lets say, on a higher horse than the Queen Of England.

#1 Don't panic.
#1.2.5 Don't give up and get depressed.
#2 I think the giving up part is worse than the panicking part. Freak out, then get on with business..
#3 yep.
 
#4 You can find any help here.

Check your plugin compatibility with newer WP version, this is a hole when it's not guarantee of 100% compatible.
 
i always wondered if you could download your complete site to your desktop and then scan it with a anti-virus to find the issue??
 
origin said:
#4 You can find any help here.

Check your plugin compatibility with newer WP version, this is a hole when it's not guarantee of 100% compatible.
Click to expand...

NextGEN Gallery & WordPress.com Stats is all I had installed at the time.
 
greentitanium said:
i always wondered if you could download your complete site to your desktop and then scan it with a anti-virus to find the issue??
Click to expand...

Backups of the dbase and the wp files are good to grab before you try to fix a hack, but if hackers have gotten into your database (e.g. inserting an admin user), your scenario really won't eradicate the buggers.
 
greentitanium said:
i always wondered if you could download your complete site to your desktop and then scan it with a anti-virus to find the issue??
Click to expand...

No won't work different operating systems. Thankfully even *I* can't download my mysql database atm. Not enough memory available. (problem before I got hacked)
 
gotcha. surprised there isnt software that does this, just imagine.
i just recently started looking at wp auto backups because of this issue the op has.
havent found one yet
 
gregstereo said:
Backups of the dbase and the wp files are good to grab before you try to fix a hack, but if hackers have gotten into your database (e.g. inserting an admin user), your scenario really won't eradicate the buggers.
Click to expand...

Not my area of expertise, though the user did create a blog under my (admin) name. And added himself to every user created blog.
 
greentitanium said:
gotcha. surprised there isnt software that does this, just imagine.
i just recently started looking at wp auto backups because of this issue the op has.
havent found one yet
Click to expand...

There are some plugins to backup WP databases. Won't work for me tho. Mine is 900 mb or so.
 
gahoachma said:
Nope. I did look thru the wordpress config file and didn't find anything unusual. Or than that I'm afraid to do that, I might perm break something. lol.

So far as managing the 2k+ blogs? Not so much. *idiot* I've gone thru and noticed a few link farm pages and deleted them.

There is another plugin I need..
Click to expand...

If your blogs are still infected, you can try reinstalling wp core on all blogs.

To do so,
go to http://yourdomain.com/wp-admin/update-core.php and click on "re-install automatically".
 
greentitanium said:
gotcha. surprised there isnt software that does this, just imagine.
i just recently started looking at wp auto backups because of this issue the op has.
havent found one yet
Click to expand...

I think backupify.com can backup wordpress data, haven't used it yet.
 
Advertise on BHW
You must log in or register to reply here.
Sign up now!

Main Menu

Home Main Forum List Black Hat SEO White Hat SEO BHW Newbie Guide Blogging Black Hat Tools Social Networking Downloads

Marketplace

Content / Copywriting Hosting Images, Logos & Videos Proxies For Sale SEO - Link building SEO - Packages Social Media Social Media - Panels Web Design Misc

Making Money

Affiliate Programs Hire a Freelancer Making Money Pay Per Click Site Flipping

BlackHatWorld

BHW Merch Forum Suggestions & Feedback Introductions Lounge Dispute Resolution

Other

Domain Name Forum IM Journeys Web Hosting Newsletter
Back
Top