Its again now in September 2010, many of the wordpress based sites are hacked. Earlier during May 2010 many of the wordpress sites hosted on Godaddy are affected by malwares. This time, i am not sure whether the attack is towards Godaddy hosted sites or through out the PHP based sites. This post helps you guys to quickly fix your hacked web site back to normal, within minutes. Looks the attack doesn’t cause any direct impacts to your site but those who are visiting your site may get inflected by Trojan’s.
Today morning, when i opened by site suddenly my Anti-virus alarmed saying, “Trojan Detected” and it blocks my site from loading. My first guess, remembers me back to the month of May where many of the wordpress sites were hacked down. Just made a Google search and found that our friend from Blogtips.org had written a blog post about a similar attack on this September.
Okay, you don’t need to worry. Its simple to fix this issue. Just by restoring all the files from older backup recovers your site.
How To Fix ? (For Godaddy Users)
- Go to Godaddy.com, enter login/password.
- Click your domain name which appears in the center of the page.
- Now the dashboard appears, select Hosting.
- From the top menu select Content -> File Manager.
- Check the last modified date/time of .php files, it all looks similar and it will be a recent date on which your site was hacked.
- To make sure this is a similar attack, open any .php file and see the top. The file starts like below: (base64_decode is the call used to decode that hidden hack code) <?php /**/ eval(base64_decode(“…
- Now you have to restore the files, Click History.
- Click the Calendar icon and select a date before that hacked date.
- Check the Tick Mark at the top.
- Make sure the page size is set to 50 (to view all the hosted files in single page or if you have more files then you have to select them from the second page too).
- Click the ‘Restore’ button and give OK.
- It shows ‘Restoring’ and finally it completes.
- Thats it. Your site recovered now.
- Make sure you have cleaned the cache (if you use any cache plugins like hypercache/supercache).
- For security reasons, you shall change your wordpress database password. See here and here for more info.
How To Fix ? (For non-godaddy users).
- Simply check this post on how to fix ?
If you feel these restore steps are not clear, check Godaddy’s Help.
- Stay tune with us to get more updates in the future.