My Site got Hacked (Liz0ziM.,) has Malware

Scott_Herder · February 16, 2018, 12:56am

Hi there, apparently somehow in the last 48 hours my site got hacked and malware installed?

I am getting this issue - Liz0ziM.

Here is the report - Details: This file appears to be installed by a hacker to perform malicious activity. The text we found in this file that matches a known malicious file is: “cat /etc/passwd”. The infection type is: A backdoor known as Liz0ziM.

Filename: wp-content/plugins/index.php
File Type: Not a core, theme or plugin file.

It seems to just be on the wp-content/plugins/index.php

I was thinking I could just download a fresh copy of that and re-upload it. Is there a way I can download a fresh copy of that file please?

Thank you.

nico · February 16, 2018, 8:09am

Hi @Scott.Herder,

Thanks for writing in.

I would recommend you to reinstall everything again to prevent again the malware to attack except your customization. Upload all your customization in your child theme.

https://theme.co/apex/forum/t/setup-how-to-setup-child-themes/57.

Don’t forget to backup your database so that after you remove everything then re install all you need, you can easily generate again your setup.

Let us know how it goes.

Thanks.

system · February 26, 2018, 8:09am

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.