find /var/www/wordpress -type d -exec chmod 755 {} \;
find /var/www/wordpress -type f -exec chmod 644 {} \;Add to wp-config.php
define('DISALLOW_FILE_EDIT', true);
- Rename admin account
- Change default table prefix
wp_
- Most often, Wordpress core files are modified to include a PHP Shell for back door access or to inject spam content
- Open Google WebMaster tools and check for links with hacked content
- Since this hacked content is only visible to Google Spider, install
User Agent Switcheradd-on in Firefox, set the user agent to Googlebot and open the link with hacked content - Follow the below steps and keep checking the link in question to make sure all the unwanted content is cleaned up
- If the code base is being tracked on
git(which should be the case always), rungit statusand check for modified/added files - Open these files in
nanoorvimeditor and remove the suspicious code - Update/Reinstall Wordpress core from dashboard which should overwrite the core files if they were modified
- Open the website in Chrome and check the
Consolefor any errors relating to missing content and fix those - Once you're sure the code base is clean, make a commit to git
- Submit a Reconsideration Request from Webmaster Tools to get rid of the
This site may be hackedmessage from Google results