Site hacked, restore BeTheme Options
Hi,
One of my websites was hacked last week.
I am trying to restore it now, an external security company already purged out malicious files and code and db entries.
They wrote:
Cleared malware from database: wp_gsy_options.option_value, option_name = betheme. Details: js.malware.injector_stats.006. Content: eval(String.fromCharCode(118,97,114,32,1...,125));
So i am trying to restore my former BeTheme options and for this opened a backuped dump of the database. I thought, that I would just have to copy the content of this respective field from the dump to the actual database. I did this, but nothing changed neither on the website nor in the BeTheme options (eg. there is still no logo displayed, no favicon, wrong fonts, ...).
Shouldn´t this not be the way to restore BeTheme options?
Best regards and thx
Markus
Comments
Hi,
You should restore the field named betheme in table wp_options. It should have serialized table and look like this:
Best regards
i know, but it doesn´t help to just copy/paste what i took from the dump
instead, i put the content from the dump (from that respective field), copy&pasted it into a text file.
put 3 # at the beginning and at the end and substituted all \" with ".
Then imported it via betheme options panel
that worked like a charm
site looks good now
Great to see that you manage to solve that.
Best regards