-
Posts
-
My site running the latest Enfold theme and has been hacked twice in the past week. This is the most recent email I received from my hosting provider today. I had fixed the site to get it back up and running last week, but apparently it wasn’t fixed enough, or there’s still some vulnerability. Please advise ASAP.
The following file(s) specifically have been identified as attacker-added
malware. These files have been DISABLED by setting their permissions to 200
(Owner write-only). These files should be audited and either replaced with
known good versions or, if not legitimate site components, removed altogether:/home/patexm/exmanadvocacy.com/post.php
/home/patexm/exmanadvocacy.com/wp-content/themes/enfold/login.phpAttacker injected malicious code (e.g. iframes, javascript script tags,
adware redirects) was removed from the following files:/home/patexm/exmanadvocacy.com/wp-content/themes/enfold/login.php
The existence of this known attacker content indicates that your website
or user password has been compromised. You or a trusted webmaster will
need to determine the attack vector and then take actions to mitigate
further exploit.Hi rachelreuben!
The issue is not at enfold.
If someone gets access it is because of either Hosting ( or you loosing ftp details ) or WordPress access.
Please ask for someone who does know how to fix it ( http://kriesi.at/contact/customization )
so they can provide assistance for you.Regards,
Basilis
- You must be logged in to reply to this topic.