Wordpress index files hacked - how to remove hackers message
I just answered a thread about this - but it's disappeared. I'm not sure why, so if this is also inappropriate I'll understand if it gets deleted.
The poster was asking how to replace corrupt index.php files in Wordpress.
This is (approximately cos I'm writing it again) the answer I'd just posted before the thread disappeared.
If your Wordpress site is hacked and replaced by a hackers message, it is likely that it is the index.php files that have been changed.
This is what I did when it happened to me.
1) Do a fresh installation of Wordpress in a new directory. This will contain a set of working index.php files (and at one level an index-extra.php file)
2) Use your ftp software to connect to this new installation and download the fresh index.php files to your computer. Rename them as you go so you know where they came from.
3) Now use your ftp software to connect to the hacked site. You will need to do a bit of exploring in both step 2) and this step to find all the files.
4) You should be able to tell which index files have been hacked from their dates.
5) Use your ftp software to upload the appropriate, fresh index file from your computer. Delete the hacked file and then rename the one you uploaded back to index.php
That should, I hope (!!!) cure the problem. If you still see a hacking message, it is likely that you missed an index file somewhere.
Hope this helps someone.
Carol
The poster was asking how to replace corrupt index.php files in Wordpress.
This is (approximately cos I'm writing it again) the answer I'd just posted before the thread disappeared.
If your Wordpress site is hacked and replaced by a hackers message, it is likely that it is the index.php files that have been changed.
This is what I did when it happened to me.
1) Do a fresh installation of Wordpress in a new directory. This will contain a set of working index.php files (and at one level an index-extra.php file)
2) Use your ftp software to connect to this new installation and download the fresh index.php files to your computer. Rename them as you go so you know where they came from.
3) Now use your ftp software to connect to the hacked site. You will need to do a bit of exploring in both step 2) and this step to find all the files.
4) You should be able to tell which index files have been hacked from their dates.
5) Use your ftp software to upload the appropriate, fresh index file from your computer. Delete the hacked file and then rename the one you uploaded back to index.php
That should, I hope (!!!) cure the problem. If you still see a hacking message, it is likely that you missed an index file somewhere.
Hope this helps someone.
Carol
All My Secret Strategies Exposed - http://www.OneMillionIncome.com
View My Blog For $1000 + FREE Info - http://www.MarkMcCulloch.info
Decide Your Own Income - http://www.DecideYourIncome.eu