My site is hacked

[fight4you]

Hello, today i try to open my site and i see is hacked. Can anyone help me?!

 

[REAK]

Well,

First contact your webhost, Try to get them to look into server logs to know what caused the hack.
Then work on patching the exploit.

Roll back from your last backup, as if you use the current one there might be hidden backdoors.

Regards

 

[fight4you]

I already contact with my webhost. Thanks. I never did backup of my site

 

[AlbCoder]

download all your public_html folder via ftp and enter in phpmyadmin to export sql databases

 

[fight4you]

My webhost back my site again.

 

[msk19994]

Good For You

 

[SkyDiver]

So the moral to the story?


Always BACKUP your site REGULARLY!!!!!!

 

[Tango]

What CMS are you using? and is it the latest version (including plugins)

 

[dljawed]

Seems to be like mysql injection ! your index.php might be replaced with hackers file!

 

[fight4you]

I use wordpress, it's not last version, plugins are updated regularly.

 

[Deadmau5]

I use wordpress, it's not last version, plugins are updated regularly.

Of course specially wordpress should be always on the Latest Version Dude

Regards

 

[fight4you]

Update done. Now i need to check how to backup my site, so if this is happend again to be ready.

 

[acexxx]

You should use https://wordpress.org/plugins/updraftplus/ or https://wordpress.org/plugins/backwpup/ .You should install some security plugins also.

 

[fight4you]

Thank you, i'll already start to check them.

 

[Tango]

You should delete all core files/folders and upload fresh ones and check and upload folders/files (eg. uploaded image folders), If your site has been exploited by someone the 1st thing he would do is upload a shell somewhere so he can access the site after the exploit has been patched (eg. you upgraded wordpress and plugins)

At least run a malware scanner, I just found this one (I haven't tested it)

https://wordpress.org/plugins/sucuri-scanner/

 

[fight4you]

I check with this plugin and my site is clean.

__________________
Added after 11 Days 7 Hours:

All my plugins are gone... When i open the plugin's page i see this message:

The plugin wp-pagenavi/wp-pagenavi.php has been deactivated due to an error: The plugin does not have a valid header.

It's strange... also my other website have the same problem. I think i have virus or something.

 

[killer21]

Use a shell scanner,to scan your file manager

 

[christy]

It was happened to me before, my site have hacked 4 month ago. Fortunately i have backup all my site regularly. i ask my webhost provider to restart my account and upload again all my public_html.
Next time you should backup your site regularly and don't forget to use Wordpress Security Plugin for extra security for your wordpress site so it can make it harder for hacker to hack your site

 

[revelationwh]

Glad to hear the return of your website

 

[vedanta]

yes always make backup