We were hacked by a gucci related websites. They created a wordpress site in the folder wp-content/update domain.com/.../buy-louis-vuitton-bags-and-shoes-cheap-in domain.com/wp-content/.../prada-shoes-online-store-323/ domain.com/.../buy-cheap-louis-vuitton-replica-shoes-587 You will see that they created 200+ pages https://www.google.com/search?q=site%3Ahttp%3A%2F%2Fwww.virtualassistantfinder.com&ie=utf-8&oe=utf-8&aq=t&client=firefox-a&rlz=1R1GGLL_en___PH379#sclient=psy-ab&hl=en&client=firefox-a&hs=EDY&rlz=1R1GGLL_en___PH379&source=hp&q=site:http%3A%2F%2Fvirtualstafffinder.com+gucci&pbx=1&oq=site:http%3A%2F%2Fvirtualstafffinder.com+gucci&aq=f&aqi=&aql=1&gs_sm=e&gs_upl=141401l141945l6l142575l5l4l0l0l0l1l658l1258l2-1.1.0.1l3l0&bav=on.2,or.r_gc.r_pw.r_cp.,cf.osb&fp=10d598ea5da8a330&biw=1360&bih=521 How they can get inside the site and what to do?
First change your passwords and passwords should be alpha numeric. After that set your folder permission to read able only. You can do this easily. Open ftp and login with ftp details. go to wp-content folder and right click on it. you will see permission settings. click on it and set permission to read only. If you need any help, just PM me.
Thanks I will try to do it.. I find that this hackers able to install their site in more than 1/2 million wordpress sites
My site was hacked too: tinbaohiem.com Vietnam insurance news, I will share my solutions: 1. backup your site via hosting manager like controlpanel.....: example: tinbaohiem.com/cpanel 2. Use FTP to download all your CODE (files and folders) 3. login phpmyadmin Link like that: tinbaohiem.com/phpMyadmin to backup (export your database) 4. Clean all files, folder on your host, Drop database too. and Changes all FTP user pass, and any related pass. 5. Set your site on localhost and update (overwrite ) Newest fresh Wordpress version. 6. Scan for all files and folder none wordpress core, and clean it. 7. Upload your site back to live domain. Goodluck