Step-by-Step help you solve the WordPress platform hacker attacks (i)

Source: Internet
Author: User
Keywords WordPress Delete if hacker attack

&http://www.aliyun.com/zixun/aggregation/37954.html ">nbsp; WordPress is a use of PHP language development of the blog platform, users can support PHP and MySQL database server to set up their own web logs. WordPress can also be used as a content management system (CMS). WordPress is a free open source project that is licensed under the GNU General Public License. The latest version is the 3.0 release of June 18, 2010.

As the most popular blogging platform, WordPress offers users a variety of tools that users can use to publish articles and interact with readers. More pleasing, though, is the upcoming WordPress3.0 this month that makes it closer to CMS content management systems. Although WordPress3.0 does not change much compared to the previous version, it makes a lot of sense, especially for users who want to use WordPress as a content management system.
WordPress 3.0 official version with new content:

Update content:
New customizable default theme;
New background management interface;
Consolidate multi-site functionality
Fix a large number of bugs

WordPress 3.0 RC3 with NEW:
1. Customize the type of publishing content
2. Menu Management
3. Custom taxonomy
4. New default theme: "Twentyten"
5. Multi-site function

Download Address: http://wordpress.org/download/or background Automatic Update (Chinese version to be released soon)

It's not a pleasure to be attacked by hackers, but if your site is built on a WordPress platform and unfortunately hacked by hackers, this article will help you solve it step-by-step.

First, try not to panic. Although I also know that this is a bit unrealistic, but you have to think about millions of of blogs are attacked every day, not one of you feel afraid, violated. Hacker attacks lurk around all of us, and in addition to websites, computers, smartphones and so on can all be targeted by hackers. Now, let's talk about the actual steps:

1. Make sure your antivirus software is up to date

Making sure your antivirus software uses the latest virus definition files is critical. If you use the Windows system and have not installed antivirus software, you can use the free version of Avast and AVG Anti-Virus software, these two anti-virus software are familiar to everyone. Download all updates after installation, followed by the steps below.

2. Save the hacked page to your computer [optional]

If you choose to report the hacker, it is necessary to back up the attacked page. Also, if you decide to write an article to inform others, you can get a screenshot and a text example after the backup. Save page believe everyone will, browser menu bar file-> page Save as ... Save the page on your computer (it is not recommended to save in c). When saving the page, save the Type option and remember to select "page, all" and click Save.

3. Download the latest WordPress version

The latest edition is WordPress3.0.

4. Clean all affected folders and files on the server

With the latest version of WordPress, you can delete all unnecessary files on the server. Don't worry, your database has all of your data, including your blog posts, pages, categories, tags, and so on. If it's unfortunate that your database is also under attack, hopefully you'll always have a backup. Here are the folders and files you should not delete:

Do not delete the original folder (e.g., stats)

Do not delete ' wp-content ' folders (subject content, sometimes plug-in content)

Do not delete. htaccess files (fixed link structure, permissions, passwords, etc.)

Do not delete the Favicon.ico file (the custom icon to the left of the URL address)

Do not delete google...html files (Google Webmaster tools validation)

Do not delete wp-config.php files

5. After uploading the latest WordPress version, you can safely delete the following file:

Delete/wp-admin/install.php file (no longer needed)

Remove/readme.html (prevents users from seeing WordPress version)

6. Refresh your website homepage

If your hosting provider has a default page with no content on the site, the default page will be displayed. Otherwise, you will see the standard "no page" error, which is much better than seeing an attack page, right?

7. Install the latest version of WordPress

If you delete your site content in step fifth, you can use FTP to upload all the content (except the ' wp-content ' folder). After the transfer is complete, you can go to the ' wp-content ' folder and upload new folders and files (if you want, but not necessarily).

8. Refresh your homepage again

This time, I hope you can see the original appearance of the site. If this is not possible, then unfortunately, your database is being attacked. This problem will be more complicated to solve, let's keep it next time.

Article source, reprint please specify: http://www.wordpress.la Webmaster Exchange Group: 82468412

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.