Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
T
T
Thiago Alvarez2019-11-08 17:34:06
Burglary protection
Thiago Alvarez, 2019-11-08 17:34:06

My site has been hacked. Backdoor_php. How to remove?

Download the WordPress theme. There was a backdoor.
Yesterday I uploaded the site to the hosting, and today they blocked it due to:

Reason for blocking: {YARA}Backdoor_PHP_WPVCD_DivCodeName : /home/replyuz/public_html/wp-content/themes/discy/functions.php

As I understand it, this is a piece of code in functions.php, should I remove it? but how to find it

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
U
uRoot, 2019-11-08
@uroot

And, of course, there is no backup?

As I understand it, this is a piece of code in functions.php, should I remove it? but how to find it
Look at the functions.php in the default WP theme, compare with the malicious one
. How to treat:
UPD: I'll supplement the post a little ...
Maybe fill in the topic somewhere and attach a link, you could take a look. I once treated the topic, the hoster also warned. But the hosts, by the way, there were three of them, on which the bot knocked, were already dead

Similar questions
Z
Z0nd0R2013-12-05 09:33:50
Why is the server attacking port 80? 4Reply
R
RusBead2013-12-08 19:34:24
What is the name of the game in which you need to get the location of the Nebuchadnezzar's ship by using the console? 1Reply
S
SelterTV2016-03-20 12:10:48
How to find vulnerabilities on your WordPress site? 1Reply
A
Alla_Pugacheva2016-03-24 14:57:28
How to detect iron backdoor? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question