Forums

WordPress › Support » How-To and Troubleshooting

Hacked? (10 posts)

  1. Guiltykitchen
    Member
    Posted 3 years ago #

    Hi all,

    This morning my wife asked me to look at her site and when I did it automatically redirected me to a site tobesaved3.net, which was registered YESTERDAY if you run a WHOIS on the domain.

    I searched this and found an italian (i think) forum where someone mentioned it a few hours ago. They had gone to: http://liquidweather.net/howto/index.php?id=59

    and it popped up on them. I went there and it is the same redirect as my wifes site. I have since taken her site down as a result until I can figure out what is going on. That site and my wifes site are both WordPress. Has anyone else see this or heard of this? its really new. I am trying to figure out if she is hacked.

    thanks so much in advance.

  2. Guiltykitchen
    Member
    Posted 3 years ago #

    Just an update, found another site with the same problem:

    http://www.videodvdmaker.com

    they are hosted at GoDaddy, so is my site and so is the liquidweather.net site.

  3. mokudekiru
    Member
    Posted 3 years ago #

    I'm having the same problem with one of my blogs. What's the best way to fix it?

  4. James
    Happiness Engineer
    Posted 3 years ago #

    Remain calm and follow this guide:

    http://codex.wordpress.org/FAQ_My_site_was_hacked

  5. Guiltykitchen
    Member
    Posted 3 years ago #

    I found this as well:
    http://community.godaddy.com/godaddy/whats-up-with-go-daddy-wordpress-php-exploits-and-malware/
    thanks for the post, going to check it out

  6. Guiltykitchen
    Member
    Posted 3 years ago #

    I am going through the process of restoring after performing all backups and password changes. GoDaddy promised an hour response time.. nothing yet.

  7. Guiltykitchen
    Member
    Posted 3 years ago #

    OK went through the entire sheet and restored, and changed passwords etc
    seems to be clean now. Can someone go to it in chrome and IE and see if it is working for them without the redirect?

    http://guiltykitchen.com
    THANKS!

  8. Guiltykitchen
    Member
    Posted 3 years ago #

    checked it from another machine.. still hacked :(

  9. Guiltykitchen
    Member
    Posted 3 years ago #

    well ticket is in to GoDaddy.. they are going to fix it.. i have gone through everything. Apparently it has to do with what they do when they install it through their wizard.

  10. brianglanz
    Member
    Posted 3 years ago #

    Before this turns into another media event about WordPress security, I only want to add that this is not inherently a WordPress issue even as many WordPress sites will be hit because many sites running PHP run WordPress. Already this morning, one of my friends on the latest version of Drupal was hit with the same attack, and a client of mine whose site is a fully custom job, using PHP but not WordPress, was also hit. For WordPress, following http://codex.wordpress.org/FAQ_My_site_was_hacked has been reported to clear the issue. BG

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags