wordpress selalu kena themes/sketch/header.php

[junior riau]

ribet urusin wp macam ngupas kelapa pakai gigi

 

[berkah]

ribet urusin wp macam ngupas kelapa pakai gigi

solusi gimana om

ISSUE DETECTED DEFINITION INFECTED URL
Website Malware spam-seo.hidden_content?68.1
Website Malware spam-seo.hidden_content?68.1
Website Malware spam-seo.hidden_content?68.1

 

[junior riau]

saya duet wordfence + sucuri
cukup membantu walau kadang di beberapa themes/plugin jga berhasil bobol
biasanya saya hapusin themes/plugin ga aktif terlebih tweenty sekeluarga

 

[berkah]

saya duet wordfence + sucuri
cukup membantu walau kadang di beberapa themes/plugin jga berhasil bobol
biasanya saya hapusin themes/plugin ga aktif terlebih tweenty sekeluarga

klo di scan pakai wordfence g terdeteksi ada malware, tp klo pake tool https://sitecheck.sucuri.net/ ada malware

 

[Bestariweb Hosting]

pake clamav + maldet. daily check biasanya kena.

contoh report maldet+clamav:

HOST:      xxxxx.bestariwebhost.com
SCAN ID:   180306-0335.86182
STARTED:   Mar  6 2018 03:35:46 +0700
COMPLETED: Mar  6 2018 03:38:30 +0700
ELAPSED:   164s [find: 95s]

PATH:         
RANGE:         1 days
TOTAL FILES:   5872
TOTAL HITS:    3
TOTAL CLEANED: 0

WARNING: Automatic quarantine is currently disabled, detected threats are still accessible to users!
To enable, set quarantine_hits=1 and/or to quarantine hits from this scan run:
/usr/local/sbin/maldet -q 180306-0335.86182

FILE HIT LIST:
{HEX}php.base64.v23au.186 : /home/username/public_html/wp-admin/favicon_2d038b.ico
{HEX}php.base64.v23au.186 : /home/username/public_html/wp-admin/css/colors/favicon_415ddc.ico
{HEX}php.base64.v23au.186 : /home/username/public_html/wp-includes/SimplePie/Decode/favicon_965e7f.ico
===============================================
Linux Malware Detect v1.6.2 < [email protected] >

setelah dapet report, kita bisa check suspected file. biasanya selain suspect file, ada juga temen temennya yang berperan sbg backdor.

 

[berkah]

pake clamav + maldet. daily check biasanya kena.

contoh report maldet+clamav:

HOST:      xxxxx.bestariwebhost.com
SCAN ID:   180306-0335.86182
STARTED:   Mar  6 2018 03:35:46 +0700
COMPLETED: Mar  6 2018 03:38:30 +0700
ELAPSED:   164s [find: 95s]

PATH:       
RANGE:         1 days
TOTAL FILES:   5872
TOTAL HITS:    3
TOTAL CLEANED: 0

WARNING: Automatic quarantine is currently disabled, detected threats are still accessible to users!
To enable, set quarantine_hits=1 and/or to quarantine hits from this scan run:
/usr/local/sbin/maldet -q 180306-0335.86182

FILE HIT LIST:
{HEX}php.base64.v23au.186 : /home/username/public_html/wp-admin/favicon_2d038b.ico
{HEX}php.base64.v23au.186 : /home/username/public_html/wp-admin/css/colors/favicon_415ddc.ico
{HEX}php.base64.v23au.186 : /home/username/public_html/wp-includes/SimplePie/Decode/favicon_965e7f.ico
===============================================
Linux Malware Detect v1.6.2 < [email protected] >

setelah dapet report, kita bisa check suspected file. biasanya selain suspect file, ada juga temen temennya yang berperan sbg backdor.

Waduh posisi saya reseler hosting ini pak...saya scan pakai anti virus bawaan cpanel g detect malware pak, tp klo pake tool sucuri ada

 

[natanetwork]

pake clamav + maldet. daily check biasanya kena.

contoh report maldet+clamav:

HOST:      xxxxx.bestariwebhost.com
SCAN ID:   180306-0335.86182
STARTED:   Mar  6 2018 03:35:46 +0700
COMPLETED: Mar  6 2018 03:38:30 +0700
ELAPSED:   164s [find: 95s]

PATH:        
RANGE:         1 days
TOTAL FILES:   5872
TOTAL HITS:    3
TOTAL CLEANED: 0

WARNING: Automatic quarantine is currently disabled, detected threats are still accessible to users!
To enable, set quarantine_hits=1 and/or to quarantine hits from this scan run:
/usr/local/sbin/maldet -q 180306-0335.86182

FILE HIT LIST:
{HEX}php.base64.v23au.186 : /home/username/public_html/wp-admin/favicon_2d038b.ico
{HEX}php.base64.v23au.186 : /home/username/public_html/wp-admin/css/colors/favicon_415ddc.ico
{HEX}php.base64.v23au.186 : /home/username/public_html/wp-includes/SimplePie/Decode/favicon_965e7f.ico
===============================================
Linux Malware Detect v1.6.2 < [email protected] >

setelah dapet report, kita bisa check suspected file. biasanya selain suspect file, ada juga temen temennya yang berperan sbg backdor.

sayang nya ga bisa kasi tunjuk di line berapa yg jadi masalah..
lalu kalo mau auto fix gmn ya? jadi auto quarantine tanpa suspend

 

[fahmidipa]

sudah, malware masih ada

ISSUE DETECTED DEFINITION INFECTED URL
Website Malware spam-seo.hidden_content?68.1
Website Malware spam-seo.hidden_content?68.1
Website Malware spam-seo.hidden_content?68.1

udah di cari sampai ke akar2 nya ??

 

[Bestariweb Hosting]

sayang nya ga bisa kasi tunjuk di line berapa yg jadi masalah..
lalu kalo mau auto fix gmn ya? jadi auto quarantine tanpa suspend

Biasanya Line pertama, atau total 1 file

 

[daiserver]

Waduh posisi saya reseler hosting ini pak...saya scan pakai anti virus bawaan cpanel g detect malware pak, tp klo pake tool sucuri ada

Kemarin ada client yang kena ginian, untuk ngebersihin memang susah akhirnya saya tawarkan ke sucuri. Kurang lebih biayanya sekitar 4jt dan mereka take action langsung. Sampai sekarang masih aman.
Sucuri dia bukan hanya automation namun ada human expertisenya yang turun.