1. 2 Responses to “Trojan On Wordpress Blog - How I Got Rid Of It”

2. You sure you’re clear of this? The fact that it got in once means it can get in again, so just cleaning the code it made will only help your site until whatever method they used to hack your site is fixed to prevent them from being able to do it again. Make sense?

   By You sure? on Aug 14, 2008

3. Only one version of Wordpress was vulnerable to hacking, and that’s why I am sure. If and when I find out that another version is vulnerable, I will post it on this blog.

   You need to upgrade to the current version of Wordpress… that could be set out as a rule.

   If you used Fantastico to install your blog on your cpanel-equipped hosting account, then you are in luck. Fantastico can upgrade your blog software for you in a jiffy.

   If you used ftp to install your blog, then you need to use ftp to upgrade… not that simple. I have several ftp programs, and only one, Total Commander is willing to remove a directory or folder from the server while it is not empty.

   Once you can remove the wp-admin and wp-includes folders, you can simply upload the same (upgraded) folders and the files in the root/blog directory and run wp-admin/upgrade.php file. Upgrades have been coming out fast and furious… and I have 10+ blogs… quite an undertaking. grrrr.

   Good luck, and make sure you write back if you run into a snag.

   Sophie
   http://www.sophieslist.com

   By admin on Aug 15, 2008

You must be logged in to post a comment.