Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • June 29, 2015 at 1:41 am #465592
    kiminglis

    Two of my sites using the Enfold theme were recently hacked. I’ve restored them but I have two files which I’m not sure should be there.

    One is cron.php in the top level directory. I deleted this and seems to be no problems.

    The other is cron.php in the directory /wp-includes/. If I delete this, I can’t login – gives me an error message which, sorry I can’t remember as I added the file back to get the admin page back. I’m wondering if anybody knows if this file should be there, or the hackers have installed this and made it necessary to have it.

    There were other files, the dreaded dz.php and a folder containing hundreds of indonesian porn links, which I deleted.

    Thanks for any help in advance.

    June 29, 2015 at 6:52 am #465645
    Basilis

    Hey kiminglis!

    Try doing a free security check on your web site
    https://sitecheck.sucuri.net/

    and it would be best, to keep the wp-content file and the wp-config, delete everything else, reuplaod from a clean WordPress. The process might be a bit difficult, if you can not do it let us know and we let you know how to contact.

    Best regards,
    Basilis

  • Author
    Posts
Viewing 2 posts - 1 through 2 (of 2 total)
  • You must be logged in to reply to this topic.