Reading time: less than 1 minute
Apparently began on 10/04. Upon entering my site, the page started to load normally, but at the end the visitor was redirected to other pages of malicious sites.
To solve the problem I did reset the hosting and used a backup to restore the files and the database, updated everything needed updating, changed passwords. At first the site returned to normal operation, but after a day or two the problem returned happening.
Sought help forum Hardware Secrets, I was appointed to a topic that many users were going through the same situation. In the end the problem was caused by the plugin Yuzo Related Posts, We had a publicly disclosed vulnerability.
The following are the steps that the author of the plugin released to solve the problem:
- Remove / uninstall the plugin immediately.
- In your database go to the table wp_options and look for value yuzo_related_post_options and delete this record.
- Do not delete the drawing table wp_yuzoviews, this does not influence the problem.
Search Terms:
leftoutsidemyprofile
malware.injection?35.19
