How to get rid of eval base64_decode Hack

Original Article at How to get rid of eval base64_decode Hack.

Subsequent to our previous post here is a step by step solution for people who don’t have the time or the means to thoroughly track and eliminate all instances of the hack. We will use this method on the YORGOO Press websites.

Zo with a Leica Lens: this pic is 15 kb light! Click to see a larger version.

Basically the DataBase as well as some files on your server: mainly the index.php or html pages plus the hack adds new pages containing namely iframe injections. The files can be found anywhere from the root folder to wp-admin, wp-includes to wp-content. Also, additional sub-domains or subfolders may be attacked.

We experienced that comments may be subject to justified suspicion as well.

First, we will optimize the database tables and empty the comments and comments meta tables.

This is to get rid of comment related problems. From a content point of view this is the main sacrifice we will make. This step is optional and you could well give it a first shot preserving the comments.

From your Dashboard, export the content of your site.

In wp-contents on your server, check the uploads folder for hacked or added files. We preserve this folder as it contains our images and other media. Make sure no files have been added by the hack, namely php files.

Delete the folders wp-admin and wp-includes as well as all the files in the root, preserving wp-config.php after checking it for cleanliness.

Delete in wp-contents the plugins folder preserving eventual customizations of plugins, such as SlideDeck Pro Skins, adelete ll eventual cache or back-up folders, delete in the theme folder all themes except the one you are using. Test your theme for cleanliness.

Now we should have just the config.php file in the root and our theme in the theme folder as well as the clean uploads folder on the host.

From your cPanel, delete your database.

From your dashboard, create a new database and modify config.php accordingly.

Download the latest WordPress (3.2) from wordpress.org, unzip it and load the content of the ‘wordpress’ folder to your install folder overwriting what remains of the previous install.

Typethe admin access into the browser, follow the wizzard and login.

Here are the config priorities: General Settings, Permalinks, as well as delete the hello world post and all WordPress links in the Links archive. Add your Plugins, namely the ones relating to SEO and configure them.

Under Appearance, activate your theme, load the widgets and configure your theme; if you are using XO with a child, activate the child and then configure layout and design settings in the XO menu at the bottom left of the dashboard.

From the Dashboard, Import your content; by default servers allow uploads up to 2 MB — ask your host to temporarily increase that limit. YORGOO Times for example needs a limit in excess of 30 MB.

Check your website and apply fine-tuning where needed. Your content is loaded and all links should be as before if you use the same permalink structure.

All Done :-).

• base64_decode hack
• eval base64_decode hack
• how to get rid of wordpress eval(base64_decode
• eval(base64_decode(eval(base64_decode(
• wordpress menu limits
• wordpress hack eval
• Make slidedeck pro without buying it

Related posts:

1. WordPress eval base64_decode Hack
2. How to Move your WordPress Blog
3. Install XO 2011 on Ycademy Sandbox
4. Upgrade your WordPress in 5 seconds
5. How to Install YORGOO Booster

Copyright © Yorgo Nestoridis - Original Article at How to get rid of eval base64_decode Hack.

Tags: base64_decode, Blog, eval, Garden Route, get, Hack, Hosting South Africa, How, Marketing, Media, of, Online Marketing, Publishing, rid, to, Tutorial, Tutorials, Web Design, Web Services, WordPress, WordPress Developer, Yorgo Nestoridis

This entry was posted on July 12, 2011 at 1:45 pm and is filed under Yorgo Nestoridis. You can follow any responses to this entry through the RSS 2.0 feed.