Our theme doesn't include any malicious code otherwise Envato/ThemeForest would delete it from their page.
Have you installed any nulled (illegal) theme or a plugin please because I saw some malicious codes overwriting our theme. Your site hacking can happen for different reasons and one of them is have installed a theme/plugin from an untrusted source (ie. nulled script).
It's normal that nulled (themes/plugins that are downloaded illegally) contains malicious code inside them.
Nulled theme/plugin basically mean cracked/hacked. The distributors of such themes/plugins often hide popups/ads inside to earn money or manage your database and files or any other purpose. They aren't secure at all, and it is not worth using them.
So what is next?! I suggest you to use latest PHP version 7.2 because it doesn't allow "eval" function to be used which will reduce chances for this "virus" to make things worse.
— Re-install the copy of WordPress.
— Install WordFence plugin and perform a site scan to see if there is anything suspicious left.
If the WordFence results are fine, then you can proceed with your site, please note that you need to install only from trusted sources. If you have downloaded a plugin or theme from an unknown/untrusted source then don't install it.
Hi,
Have you had any of your customers using Kalium had problems with their hosting service company as we have been informed some files were infected:
wp-content/plugins/LayerSlider/uhuzjfwg.php
wp-content/uploads/2015/.7e8ff8e6.ico
wp-includes/js/swfupload/.7f88ca48.ico
wp-content/plugins/revslider/includes/output.class.php
wp-content/plugins/LayerSlider/views/qufjopga.php
wp-content/uploads/2019/02/anis.php.suspected
wp-content/uploads/2019/02/wp-menus.php.suspected
wp-content/uploads/2019/02/pop-content.php.suspected
wp-content/uploads/2019/02/wp-blogsnew.php
wp-content/uploads/2019/02/popnew.php.suspected
wp-content/uploads/2019/02/default.php
wp-content/themes/kalium/inc/lib/smof/front-end/options.php
wp-content/themes/kalium/inc/lib/smof/functions/functions.interface.php
Hi there,
Our theme doesn't include any malicious code otherwise Envato/ThemeForest would delete it from their page.
Have you installed any nulled (illegal) theme or a plugin please because I saw some malicious codes overwriting our theme. Your site hacking can happen for different reasons and one of them is have installed a theme/plugin from an untrusted source (ie. nulled script).
It's normal that nulled (themes/plugins that are downloaded illegally) contains malicious code inside them.
Nulled theme/plugin basically mean cracked/hacked. The distributors of such themes/plugins often hide popups/ads inside to earn money or manage your database and files or any other purpose. They aren't secure at all, and it is not worth using them.
So what is next?! I suggest you to use latest PHP version 7.2 because it doesn't allow "eval" function to be used which will reduce chances for this "virus" to make things worse.
— Re-install the copy of WordPress.
— Install WordFence plugin and perform a site scan to see if there is anything suspicious left.
If the WordFence results are fine, then you can proceed with your site, please note that you need to install only from trusted sources. If you have downloaded a plugin or theme from an unknown/untrusted source then don't install it.
I hope this will help you.
Best regards,
Laborator Team