How to remove Malware from WordPress sites

WordPress has made the web designers’ lives easier. It has reduced the web development time & cost drastically. The CMS is so powerful that more and more people are converting/migrating their sites to WordPress. With ease comes the danger of being compromised. If compromised – your site will not function properly. It may leak your confidential information, give access to spammers and use your hosting account for spamming, give access to hackers who may upload files to run phishing attack.

Let us first know why a wordpress website gets hacked – gets infected to malware.

WordPress website becomes vulnerable due to the following reasons:

1. WordPress is not updated
2. Plugins are not updated
3. The administrator username passwords are too easy.
4. The computer used to administer the wordpress site (Admin area & cPanel/FTP) is itself infected to viruses.
5. Use of nulled / pirated templates or Plugins – in which codes are embedded which gives the hacker the access.
6. Presence of other hacked script/website in the same hosting account.
7. Unsecured Web hosting. (Poorly configured server, easy guessable passwords etc).

How to identify your WordPress website is hacked or have malware in it?

The website will start behaving abnormally. The website may go blank, break or become very slow. The hackers may get access of your web hosting account and may upload their own scripts and start spamming or create phishing pages. Your web hosting account will be exhausted and your hosting company may suspend your account for resource over usage and spamming. These are some of the symptoms your WordPress is being hacked. If you dig deeper and want to be sure – you need to check the files of your WordPress system. You may find unknown folders (Directories) and files. That’s not it!! Many of the php files (Mostly theme & Plugin files) may contain malicious code in those.

How to clean the WordPress website:

1. First and most important step is – make your computer / work station secured. This includes – having a very good antivirus / Internet security system. Get one (Kaspersky, Bitdefender, AVG, Norton … bla bla bla) if you do not have it yet. Make a full system scan and get rid of any threats (viruses, Trojans).

2. Download the WordPress website in your computer (using FTP or Control panel File Manager). To reduce the time – you may Zip (compress) the full site if you have a control panel in your hosting and if it allows compressing.

3. Extract the folder – if you’ve downloaded a zip copy. Keep the zip file as backup and do not delete it – so that you can use it if anything goes wrong when you try to fix the site. Take a backup of your database too. Now, go into the extracted WordPress folder.

4. The next part is cleaning the malicious code. This is a bit tricky part. There may be hundreds of hundreds of files which may contain malicious code (hacker embedded code). Mostly the php files in the Themes and plugins get infected. But php files in other directories may get infected to. I will show you a trick which will help you get rid of these codes within few seconds.

a. You’ll need Adobe’s Dreamweaver tool or something with similar features. You can download Adobe Dreamweaver Trial from this link.

b. Now you need to find a file which contains malicious code. Go to the active theme folder under “wp-content” >> “Themes”.. Then open the index.php file using Dreamweaver. The malicious code should be either at top or at the bottom and should look like this:

malicious code in wordpress php files

Malicious Code

All the infected files should contain the same code. If you carefully look in the picture above you’ll notice that the malicious code starts and ends with “//###==###”. The code can vary from what you see in the above picture – but it will be something like this. You’ll need to remove this chunk of code from all the files.

Copy malicious code in wordpress php files

Copy Malicious Code

c. You have to use the Find & Replace function in Dreamweaver. Copy the malicious code (starts and ends with “//###==###” in this case). Now press “CTRL + F” and the Find & Replace option should appear.

d. Paste the malicious code in the “Find” box and keep the “Replace:” Box empty. Now you have to choose “Folder..” option from the drop down menu “Find in” and “Source Code” option from the drop down menu “Search:”.

search and replace malicious code in wordpress php files

Find and Replace malicious code with empty box

Now you have to choose the search Destination Folder:

search and replace malicious code in wordpress php files in destination folder

Selecting the folder in which it will search for malicious code.

Choose the root directory of wordpress site from your local machine. Now press the “Replace All” as shown in the “Find and Replace malicious code with empty box” image. This will wipe off the malicious code from all the files. Now you need to save all the files from “File”>> “Save All” option. You are done with Malicious code removal!! Congrats…

5. The next step is cleaning all the hacker uploaded folders. Your basic wordpress website should have 3 folders in the root folder. wp-admin, wp-content and wp-inlcude. You might have a look at other folders in the root directory and consider removing those if you are sure those doesn’t belong to your website. You can replace all the files and folders from a fresh copy of WordPress except the wp-content folder and wp-config.php files. Remember, If at any stage the website breaks – you have the zip file (mentioned in step 3) as backup.

6. Now you’ll have to prepare your hosting account for re-uploading the cleaned website.
a. The first thing you need to do is – delete all the files of your wordpress site from your hosting account.
b. Change the password of your hosting accounts and change the password of any other FTP accounts in that hosting account.
c. Upload the cleaned WordPress files.

7. After re-uploading the site if it runs properly do the following:
a. Update the wordpress to the latest version.
b. Remove any unnecessary plugin. If you are unsure about which ones are unused – you may skip this step.
c. Update all the plugins & Templates.
d. Change WordPress username and password to a complex one. Do not keep “admin” your username.

8. You need install some third party plugin to harden the site security. For example, you may consider installing ALL IN ONE WP SECURITY & FIREWALL. It will require me to write another similar post to describe the features and performance of this plugin – For now, let me assure you that this is one plugin which will make your website very secure.

all in one wp security and firewall for wordpress protection

It will show you, protect your site and will keep your sites and plugins updated automatically. It can also change the admin directory of your wordpress site changing the admin login link– which will reduce the Admin login attack in your site. There may be other similar plugins with same functionalities. You need to implement this kind of plugins to make and keep your site secured.

9. Take help from professional WordPress malware solution provider: You can take help from professionals who provide WordPress malware removal solutions. WPMalwares is such a provider. These guys are wordpress security specialists and can solve your problem at a very low price. You can save your time for something more important and leave your headache to these guys. They will fix your site and will provide you free support for one year. Moreover, they will add extra layers of security on your website.

wpmalwares.com WordPress Malware removal

For details – please visit:  WordPress Malware removal

Feel free to comment if you think I have missed any point or if there are better ways to clean and protect wordpress websites. I will include your suggestions in the main post with your name and link.

wp-goodluck!! 🙂

Download Windows 10 iso directly – Install / upgrade offline

Microsoft has released its new operating system Windows 10 – which is available free for the existing Windows 7 and Windows 8 users. Windows 7 & 8 users can upgrade to Windows 10 through a tool called “Media Creation Tool” – which is available in this link: https://www.microsoft.com/en-us/software-download/windows10

The software downloads the whole operating system and then updates your Windows 7 or 8 to Windows 10. This is a painstaking process where you need to keep you computer on for a long time for the upgrade to complete. However, there is another method using which you can download the whole ISO – burn it in DVD or make a bootable USB drive and install/upgrade to Windows 10 operating system. Moreover, you can distribute the ISO or keep it with you for future use – saving a lot of Internet bandwidth and time for you.

The “Media Creation Tool” is for the windows users who are planning to upgrade – but there might be Linux or Mac users who might want to shift to windows 10. Windows has direct iso download option for Linux or Mac users. Well – we will use this feature to get the Windows 10 iso even from the windows. There is an extension of Google Chrome browser named “User Agent Switcher Extension“. If you do not have it – you have to install it.

After installation of the extension – right click on a blank space on any webpage – Click on “User-Agent Switcher” >> Safari >> Safari on Mac. Or alternatively other operating system [firefox, Google Chrome, Opera] of MAC or Ubuntu.

Chrome user agent switcher extention

Now go to this link: https://www.microsoft.com/en-us/software-download/windows10ISO

You may ask the question – why do you need to use that Google Chrome extension!! Well, if you try to browse the above link from your browser and if you are using windows – you’ll be redirected to: https://www.microsoft.com/en-us/software-download/windows10

This redirected page will only allow you to download “Media Creation Tool” not the direct Windows 10 ISO. I hope this make sense now…

However, You’ll be prompted to choose the Windows 10 Edition. You may select “Windows 10”.
select edition for windows 10 iso download
Then you’ll again be prompted to select the language.
select language for windows 10 iso download

After you select your desired language you’ll get the ISO download link:
download 32 or 64 bit ISO of windows 10 direct link

Remember – the download link is valid for 24 hours. The download size is nearly 4GB (3.8 to be precise). After you download it – you may make a bootable usb disk or burn it in a DVD – distribute it to anyone who wants to upgrade or install fresh windows 10 in their computer. Cheers.

Good Luck…

Download link of Winamp – The best MP3 player in the world [updated]

MP3 and Winamp became synonymous since the end of 90’s. I have always used Winamp for listening to music. No doubt it was the most popular media player in the world. When Nullsoft Inc – the creator of Winamp announced it will no longer work on Winamp – was a shocking news for Winamp lovers like me. Although Nullsoft is not releasing new updates for the software – the old one is still good enough. If you were looking for download links of Winamp and its plugins – here you go:

DOWNLOAD WINAMP

Windows: Winamp 5.666

http://winampplugins.co.uk/Winamp/ (official fully patched build)
http://www.filehorse.com/download-winamp/ (patched)
http://www.filehorse.com/download-winamp/15619/ (unpatched)
http://www.tomsguide.com/us/download…p,0301-14.html (unpatched)

Important: Update Patches for Unpatched 5.666 (build 3516) only!

Mac OSX: Winamp Sync Beta 0.8.1
https://www.macupdate.com/app/mac/40721/winamp | dmg direct
http://mac.filehorse.com/download-winamp/

Android: Winamp 1.4.15 & Pro apps
Free APK | mirror
Pro Stub | mirror
Downloads & instructions

_______________________________________________

WINAMP SKINS

http://www.allwinampskins.com
http://www.1001skins.com
http://www.deviantart.com/?qh=&secti…q=winamp+skins
http://skinconsortium.com/index.php?…loads&typeID=1
http://uploadgeneration.info/Winamp/…com/skins.html
http://winampheritage.com/skins
http://www.winampskins.info
http:/www.customize.org

WINAMP PLUGINS

http://uploadgeneration.info/Winamp/…ins/index.html
http://winamp.dpedu.io/
http://winampheritage.com/plugins
http://www.getwinamp.net/mirror/download/
https://www.google.com/#q=winamp+plugins

Download Windows 7 Iso – Active Links

I was having problem finding Windows 7 iso download links. I discovered it can only be downloaded from Microsoft website if you have the Product key with you. However, you might not always have the product key with you or it is possible that the product key you have was supplied by your computer vendor which is not recognized by Microsoft. In that case you’ll not be able to download Windows even if you have a valid product key. If you are in this situation- the following part of the post is for you:

X17-59186.iso: Windows 7 SP1 Professional (x64)
http://msft.digitalrivercontent.net/win/X17-59186.iso
Mirror: https://googledrive.com/host/0BxJgS33zZl9bZF9LWXJhakZaVGs

MD5: ed15956fe33c13642a6d2cb2c7aa9749

SHA1: 0bcfc54019ea175b1ee51f6d2b207a3d14dd2b58

X17-59183.iso: Windows 7 SP1 Professional (x86)
http://msft.digitalrivercontent.net/win/X17-59183.iso
Mirror: https://googledrive.com/host/0BxJgS33zZl9baG9TQVNjeG9xYnc

MD5: 0bff99c8310ba12a9136e3d23606f3d4

SHA1: d89937df3a9bc2ec1a1486195fd308cd3dade928

X17-58997.iso: Windows 7 SP1 Home Premium (x64)
http://msft.digitalrivercontent.net/win/X17-58997.iso
Mirror: https://googledrive.com/host/0ByXszuHgPs8uaHp2clBzcTBqblE

MD5: da319b5826162829c436306bebea7f0f

SHA1: 6c9058389c1e2e5122b7c933275f963edf1c07b9

X17-58996.iso: Windows 7 SP1 Home Premium (x86)
http://msft.digitalrivercontent.net/win/X17-58996.iso
Mirror: https://googledrive.com/host/0ByXszuHgPs8uWm53NE41ZFVhMlU

MD5: 0afa9359c62dc7b320205d3863c60385

SHA1: 6071b4553fcf0ea53d589a846b5ae76743dd68fc

X17-59465.iso: Windows 7 SP1 Ultimate (x64)
http://msft.digitalrivercontent.net/win/X17-59465.iso
Mirror: https://googledrive.com/host/0ByXszuHgPs8ubkpHRFhqY3ZGZnc

MD5: c9f7ecb768acb82daacf5030e14b271e

SHA1: 36ae90defbad9d9539e649b193ae573b77a71c83

X17-59463.iso: Windows 7 SP1 Ultimate (x86)
http://msft.digitalrivercontent.net/win/X17-59463.iso
Mirror: https://googledrive.com/host/0ByXszuHgPs8ub2pVdmJqOC02Uzg

MD5: 2572274e6b0acf4ed1b502b175f2c2db

SHA1: 65fce0f445d9bf7e78e43f17e441e08c63722657

Similar ISO’s:
X17-24208.iso Windows 7 x86 Home Prem SP1
http://msft.digitalrivercontent.net/win/X17-24208.iso
Mirror: https://googledrive.com/host/0ByXszuHgPs8ublJXN3pWdGhxbXc

MD5: c5bb99b2f1a9e7a5b4fbc6e3eff70882

SHA1: 22df3e5a80f8dbf014c2776a01b1cd9f24d83233

X17-24209.iso Windows 7 x64 Home Prem SP1
http://msft.digitalrivercontent.net/win/X17-24209.iso
Mirror: https://googledrive.com/host/0B1fw9o0Ias3Od0NGYkJBUklUclE

MD5: 203e92593699729480b4d268cc0aadc8

SHA1: ef8bc36ea1b90bac5bc9993ff02b53a44a357a12

X17-24280.iso Windows 7 x86 Professional SP1
http://msft.digitalrivercontent.net/win/X17-24280.iso
Mirror: https://googledrive.com/host/0B1fw9o0Ias3OQTBjUWZval91bUE

MD5: befd4f1e00ec8da2effbd789f4e66fbf

SHA1: 917a542b0541054bb9c2a06a11a46aed6943856b

X17-24281.iso Windows 7 x64 Professional SP1
http://msft.digitalrivercontent.net/win/X17-24281.iso
Mirror: https://googledrive.com/host/0B1fw9o0Ias3OOUVtbnpjNnVTZ1k

MD5: 338f3245d68527db47b8a44e55317d0a

SHA1: 5ed2584110e03f498db4458ba9fafd5a7ef602ed

X17-24394.iso Windows 7 x86 Ultimate SP1
http://msft.digitalrivercontent.net/win/X17-24394.iso
Mirror: https://googledrive.com/host/0B1fw9o0Ias3ORmtYWktaYVUyOEE

MD5: 24f3a45d43d7c532aa3126cc094c61bd

SHA1: 92c1ada4ff09c76ec2f1974940624cab7f822f62

X17-24395.iso Windows 7 x64 Ultimate SP1
http://msft.digitalrivercontent.net/win/X17-24395.iso
Mirror: https://googledrive.com/host/0B1fw9o0Ias3OUkJNUFhiREYyQjQ

MD5: 56a26636ec667799f5a7f42f142c772d

SHA1: 1693b6cb50b90d96fc3c04e4329604feba88cd51

 

Disclaimer: I did not upload or create the mirror. These links are for genuine windows users.

BTRC is going to shutdown audio/video download websites in Bangladesh!!

As soon as any audio album is released in Bangladesh – it is available for download in many Bangladeshi audio/video download sites. Drama and movies are also available for download in these sites within a very short time. This is causing a real time irreversible damage to the Bangladeshi Audio/Video industry. BTRC, understanding the fact, has taken an initiative to shutdown/block numbers of websites to protect the industry. I know this will annoy us a bit as we download our favourite music, drama or movies from these sites for free. But I personally believe that this will help our audio/video industry to flourish more – related people will be benefitted and will be encouraged more to create better things in future. Many of the audio/video production companies have complained to BTRC (from Confidential Sources) and have reported against numbers of websites that are allowing to download those companies’ materials illegally without their consent.

I am not sure how far BTRC can move, but publishers of these websites will definitely look for alternatives. May be some new beneficial groups will emerge in different forms.

Download links of some books on WiMAX

Fundamentals of WiMAX:
http://www.megaupload.com/?d=RORFMDLQ

WiMAX Technology for Broadband Access:
http://www.megaupload.com/?d=UCZEXB40

WiMAX Technologies Performance Analysis & QoS:
http://www.megaupload.com/?d=H2YPJNZL

WiMAX Applications:
http://www.megaupload.com/?d=TAJUXJQY

WiMAX Operators Manual building 802.16 Wireless Networks:
http://www.megaupload.com/?d=8UOH9445

WiMAX Operators Manual building 802.16 Wireless Networks:
http://www.megaupload.com/?d=23JCM76T

Download Windows Vista Service Pack 1 RC

The Windows Vista Service Pack 1 Release Candidate (RC) is now available to the public. In addition to previously released updates, SP1 contains changes focused on addressing specific reliability and performance issues, supporting new types of hardware, and adding support for several new technologies. SP1 also addresses some management, deployment, and support challenges.

Download Windows Vista Service Pack 1 RC (SP1)