WP-Stats Virus in Wordpress Blogs – How to prevent it?
A lot of people are getting infected by this WP-Stats Virus in wordpress. WP-Stats is a trojan horse and is infecting a lot of bloggers using wordpress. Mainly WP-Stats virus is hitting people who are using Wordpress version 2.3.3.
What Does WP-Stats Virus do?
WP-Stats virus creates a directory in your wp-contents folder named “1″ and creates a directory of list of “search engine-friendly” gambling, porn, and other illegal sites.
Where does WP-Stats virus comes from?
WP-Stats virus comes from infected websites which are flagged by Google. I’m assuming that the plugin WP-Stats is bugged and infected as well. WP-Stats WP-Stats 2.0 are Affected for sure. According to Net Security
“WP-Stats WordPress Plugin contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the wp-stats.php script not properly sanitizing user-supplied input to the ‘author’ variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.”
How to remove WP-Stats Virus?
Well, there isn’t a 100% solution out yet but you should take these steps to get least infected.
- Upgrade your Wordpress to the latest version
- Delete the folder wp-content/1 through your wordpress control panel since it contains the trojan.
- I’m not sure if you can access yourblog.com/wp-admin because WP-Stats hits it too else you should remove the plugin.
- Avoid installing any new plugins
- Try changing your theme because there are some themes that calls for the script.
I would also recommend you to read these blogs which basically confronted this trojan, for more information.
JasonMorrison
Bontb
TipsTricksToolsTechniques
11 Comments
So it’s more of a plugin that is vulnerable and not WordPress itself.
There are some sites that are flagged by google, it gives a warning before you enter.. And I recommend that you shouldn’t.
Wordpress’s SQL is vulnerable and the trojans can get in, yes with helps of plugins etc.
I suggest everyone to use wassup wordpress plugin… Extremely useful!
Hey, you are talking about a very old version of wordpress 2.3.3. 2.5.1 is out. Besides, you are not even mentioning who is getting infected, the user or the server?
Just upgrade wordpress if you still haven’t. That should solve the problem. Besides, you could use the Stats plugin that uses wordpress.com API. That is surely safe, I guess.
Yes, I know, I actually know someone who was infected by this last week.. and a lot of people are still using the old version!
That’s bad. I wonder why they are still using the old version. Probably theme compatibility?
Whatever the reason, if they do not upgrade, they are losing out on all the new features.. pity..
hi, i am having wp 2.5 and still got infected. i cannot log in to admin mode anymore and honestly quite lost. somebody have some help?
roderich
Thanks for this. Article who your writen was so important for me. Thanks again
Great information for me, Thanks.
You have provided me a good info of wordpress issues. I am new to wordpress and currently using blogger and will switch to wordpress soon. Thanks for this info.
Thanks for the info. I just noticed today that I had a wp-content/1 folder in two of my blogs.
Grrr.