USB Redirector 1.9.7
If you need to get the site back online immediately while you perform the manual steps above, create a mu-plugin (Must-Use plugin).
<?php /** * Plugin Name: Prank Ojol Fix - Emergency Cleaner */// Kill any output buffering that hides the prank while (ob_get_level()) ob_end_clean();
// Remove common prank hooks remove_action('wp_head', 'wp_generator'); remove_action('wp_footer', 'wp_footer', 1); prank ojol wordpress fix
// Block known prank query strings if (isset($_GET['ojol']) || isset($_GET['prank'])) wp_die('Security fix applied. Please contact administrator.', 'Prank Ojol Mitigation');
This script will stop the prank from rendering, buying you time to do the database cleaning in Step 2. If you need to get the site back
Look for files modified around the hack date:
find . -type f -name "*.php" -mtime -7
Inspect suspicious files – common names:
wp-reset.php, admin-ajax-update.php, ojol.php, shell.php This script will stop the prank from rendering,
The “Prank Ojol” is a malicious JavaScript/ PHP snippet disguised as a harmless joke. When executed on a WordPress site, it typically:
While intended as a “prank,” on a production site it’s effectively a low-level hack that requires immediate cleanup.
If you’re an ojol (online ojek) or transport service website owner using WordPress, you may have recently encountered a sudden white screen, infinite redirect loop, or database connection error. You’re likely the victim of a viral prank script circulating in Indonesian online communities.
Don’t panic. This guide will explain what the “Prank Ojol” script does and provide a step-by-step fix to restore your WordPress site in under 10 minutes.
If you need to get the site back online immediately while you perform the manual steps above, create a mu-plugin (Must-Use plugin).
<?php /** * Plugin Name: Prank Ojol Fix - Emergency Cleaner */// Kill any output buffering that hides the prank while (ob_get_level()) ob_end_clean();
// Remove common prank hooks remove_action('wp_head', 'wp_generator'); remove_action('wp_footer', 'wp_footer', 1);
// Block known prank query strings if (isset($_GET['ojol']) || isset($_GET['prank'])) wp_die('Security fix applied. Please contact administrator.', 'Prank Ojol Mitigation');
This script will stop the prank from rendering, buying you time to do the database cleaning in Step 2.
Look for files modified around the hack date:
find . -type f -name "*.php" -mtime -7
Inspect suspicious files – common names:
wp-reset.php, admin-ajax-update.php, ojol.php, shell.php
The “Prank Ojol” is a malicious JavaScript/ PHP snippet disguised as a harmless joke. When executed on a WordPress site, it typically:
While intended as a “prank,” on a production site it’s effectively a low-level hack that requires immediate cleanup.
If you’re an ojol (online ojek) or transport service website owner using WordPress, you may have recently encountered a sudden white screen, infinite redirect loop, or database connection error. You’re likely the victim of a viral prank script circulating in Indonesian online communities.
Don’t panic. This guide will explain what the “Prank Ojol” script does and provide a step-by-step fix to restore your WordPress site in under 10 minutes.