Remove Timthumb hack from my domain at uktravelblog.net

Remove Timthumb hack from my domain at uktravelblog.net

Cancelled

Job Description

My site has been infected via a timthumb vunrability. I need someone to reactivate the site and get it back indexed with Google.

Malware uploaded through weakness in wordpress theme (TimThumb-script.)

You must:

Delete files uploaded by hacker

Change MySQL password

Remove weak script or fix weaknesses

Upgrade TimThumb to version 2.8 or later

Files uploaded by hacker:

wp-content/themes/TheTravelTheme/includes/cache/log.php

wp-content/themes/TheTravelTheme/log.php

x.txt

TimThumb with the security breach:

httpd.www/wp-content/themes/DelicateNews/timthumb.php

httpd.www/wp-content/themes/advance/timthumb.php

httpd.www/wp-content/themes/goodnews/goodnews/framework/scripts/timthumb.php

httpd.www/wp-content/themes/thesis_18/lib/scripts/thumb.php

Further notes:

Please note that this list may not be complete.

Please check all your files to make sure the malicious files are all removed.

More information about the attack:

http://www.theregister.co.uk/2011/08/02/wordpress_zero_day/

http://markmaunder.com/2011/zero-day-vulnerability-in-many-wordpress-themes/

Latest version of TimThumb:

http://timthumb.googlecode.com/svn/trunk/timthumb.php

FTP Access will be provided. I'm aware this should be a quick and easy job. You must have some positive Odesk history and be able to work ASAP.

Other open jobs by this client