Hi all, My WP site was hacked and malicious code added. Google notified me and I removed the code, but something has happened to the database. All my files and folders seem to be there, but I can't connect to the website. It says I'd be happy to pay a small fee to someone who is familiar with mySQL and/or PHP and WP if you can get the site back up. Also another small fee if you can help stop the hackers or at least create something that will inform me or delete when files are edited by anyone but me. The website is m o v i e p l a n e t s dot c o m , although there is nothing to see there right now since it won't connect to the database. Thanks
If you have paid server, then most of them make automatic backups all the time, so it shouldn't be a problem for you. Maybe you should write them, if you are not sure. You could sort it out without spending money.
wow...what version of WP were you using?? If if's the newest one, you should report it to Wordpress right away!
I was just about to upgrade to the new WP version to try and stop the hacker. When I clicked the upgrade button, it said I should backup my databases. After backing them up, all hell broke loose and now the site is down adn the backup was corrupt. I'll contact the hosting company and see if they have a backup. I kind of doubt it though.
The hosting company saved the day. Three cheers for HostNine! On a side note... Is there not a program or script I can get that would monitor my site files and immediately notify me when a file changes?? There has to be something like this already? Can anyone lead me in the right direction? If not, I think there is a market for it
I have programmed something like that, not for that purpose of course. It is not so hard, I'm quite sure that there are some scripts like that in the internet, and people are willing to share them too.
If you know how to code php heres a concept create a database, have a php script populate with the md5 hashes of all the files you want , then create a php script thats on a cron job that checks the md5 hash to the md5 hash at the time of the cron job if different than whats in the db send a email
Thanks. I don't know how to do that, but that's a good start for me to give to someone to program it for me. I probably need to figure out how the person is getting access also. I have changed ftp passwords, admin passwords, etc and the code is being added every day, sometimes multiple times a day after I removed it already.