If there’s loads of ads in your code, I agree – it’s highly likely that you’ve been hacked.
How? Have you been running an old version of WordPress? If so, or you’ve been slow upgrading in the past (and have only just noticed something amiss), then follow some of the links provided at the bottom of this page:
http://wordpress.org/support/topic/307660?replies=1
Also, look for signs of extra people with admin access. WordPress might report (2) admins, yet only show one… if so, something is amiss.
If you’re red hot at upgrading and you think it’s not because of that, you’ll still need to follow the clean-up link above, but you should also look for other insecure scripts on your webspace, anything suspicious, new files that should be there, look at your server logs and look for any other possible point of entry that you’ll need to close to prevent the same thing re-occuring. It could also be that you’re host is just rubbish.
Don’t forget to backup everything, right now, too. At least if you screw something up, you can at least get back to this point. Just be aware that the backup is tainted.
Best of luck.
if you have stuff inserted into index.php, you probably have stuff hidden on your other php files too.
http://codex.wordpress.org/FAQ_My_site_was_hacked
That link may help. Good chance you’ll need a fresh install, including theme and plugins…..and you’ll have to take all the other steps necessary to ensure you’ve closed all the doors
The first thing to do is fix your “hacked” site, if it has been hacked:
http://wordpress.org/support/topic/307660?replies=1
Thread Starter
burzyn
(@burzyn)
I tried find this spam code in files but finally i decided to delete everything (yes, everything) and upload new wp version. now it works
and spam links disappeared. thank you for support!
