Posted 2 years ago #
I have a trojan virus in my blog: http://www.amnart.net/wp
I didn't find this with a search.
It redirects people to itsallbreaksoft.net and paymoneysystem.info.
The hack is usually in the themes/header file, but my header file looks good.
My host site is working on it.
Jim
Posted 2 years ago #
Don't depend on yoiur host to fix the hack correctly; see FAQ: My site was hacked « WordPress Codex and How to Completely Clean a Hacked WordPress Install.
Posted 2 years ago #
My host site found the hacked code in the header file. I didn't see it when I looked. I am glad they found it. The blog is working correctly now. I am in the process of upgrading the wordpress software version.
Posted 2 years ago #
same same, but different ;)
look here, the problem with this nice russian guys was really in the header.php from your theme:
Posted 2 years ago #
I am not quite sure if simply updating WP works. My Blog was hacked as well. I was using the previous version of WP (the very previous, not an old one). I've upgraded, manually remove the code within the header.php page and the site came back to normal (http://wyse.com.br/blog).
As an extra precaution I logged in using a FTP software, went to THEMES, and manually set the permissions of the header file NOT to be written by anyone.
I also installed a FIREWALL WP plug-in.
I hope it works and help others.
This topic has been closed to new replies.
