counteroe.php

  • Resolved Robert Eichhorn

    (@robert-eichhorn)


    4 years, 3 months ago

    I backed up the folder that contains my WP installation. One file failed to be downloaded, named counteroe.php, located in the first set of folders and files. The file appears in my web host’s FileManager. The file permission is set at 0. I opened the file and it is blank. I found a reference to counteroe.php as a Rewrite Rule in a file named .htaccess.backup that includes code referring to redirect status. I think a hacker created the .htaccess.backup and counteroe.php files. Here are my questions:

    1. Is a file named counteroe.php, located in the first set of folders and files in a WP installation, a WP file or has a hacker created it? I opened the file and it is blank.
    2. I backed up the folder that contains my WP installation. One file failed to be downloaded, named counteroe.php, located in the first set of folders and files. The file permission is set at 0. Why did this file fail to be downloaded? Why is the file permission set at 0 and what should the file permission be set at originally – 755 or 644?

Viewing 1 replies (of 1 total)
  • Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    You’ve been hacked.

    Get a fresh cup of coffee, take a deep breath and carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures.

    If you’re unable to clean your site(s) successfully, there are reputable organizations that can clean your sites for you. Sucuri and Wordfence are a couple.

Viewing 1 replies (of 1 total)
  • The topic ‘counteroe.php’ is closed to new replies.