Reoccurring database injection

Home Forums Support Forum Reoccurring database injection

This topic contains 6 replies, has 2 voices, and was last updated by  Anti-Malware Admin 5 years, 2 months ago.

Viewing 7 posts - 1 through 7 (of 7 total)
  • Author
    Posts
  • October 25, 2019 at 5:34 am #2350

    Daniel Trevenna
    Member

    Hi Eli,

    Got to say that your plugin is awesome and has help me a lot recently, so thank you! I keep having issues with database injections though that, while your plugin successfully clears the malicious code, it keeps coming back every few days.

    I’m struggling to figure out what to do to permanently fix this without having to go to an expensive site cleaning services. Am I right in thinking that there’s some sort of backdoor that’s been added to the websites files?

    Any help or guidance would be much appreciated,
    Daniel

    • This topic was modified 5 years, 3 months ago by  Anti-Malware Admin. Reason: removed link to client's site
    October 25, 2019 at 11:43 am #2352

    Anti-Malware Admin
    Moderator

    It is possible that there is a back-door on your site that is planting those DB injections, but it is more likely that the malicious injections are coming from outside of your site. If there was any malicious code in the files on your site then my plugin should be finding it. If it is only finding malicious injections in your DB then the hack is likely to be a direct DB injection using your DB credentials. First try changing you DB password and update your wp-config.php file to match. If the DB injections continue then I would suggest that you move your site to a move secure host.

    October 26, 2019 at 6:55 am #2353

    Daniel Trevenna
    Member

    Thanks for getting back to me. Ok great, I’ll give that a go. Fingers crossed it works. Of all the things I tried, changing the DB password should have been the first thing I did. Hopefully it’s not an issue with my hosting provider, but if it is, can you recommend hosting providers with great security?

    October 26, 2019 at 4:45 pm #2354

    Anti-Malware Admin
    Moderator

    Yes, let’s hope that changing the password is all you need to do to stop the hacks.

    If it does come back though then I do offer Super Secure Hosting for $12/month per site, and I guarantee that will stop these hacks ;-)

    October 28, 2019 at 1:00 am #2356

    Daniel Trevenna
    Member

    Thanks Eli, I’ll definitely bare your hosting service in mind if this doesn’t stop :)

    November 7, 2019 at 7:57 am #2363

    Daniel Trevenna
    Member

    Hi Eli, I did find some script while looking through my database that hadn’t been picked up by the plugin. Would you like me to send it to you?

    November 7, 2019 at 8:22 am #2364

    Anti-Malware Admin
    Moderator

    Yes, please send me any new malicious scripts that you find so that I can get them added to my definition updates.

  • Author
    Posts
Viewing 7 posts - 1 through 7 (of 7 total)

You must be logged in to reply to this topic.

Comments are closed.