You have encountered an attack by SQL injection !
So in first, you need to know why !!!
Connect your FTP server, then looking for files that have been changed recently (by modified date), then, with a backup (if you have one !), overwrite those files with the original files.
In second, if you have a backup of your database, restore it with the most recent. If you still see “dave” with the email “addy ds@fsmail.net”, restore with the 2nd most recent database backup, and so on…
When all came back normal, I suggest you to find out more information on why you have encounter this attack.
You should use the following plug-in to protect your site :
– Akismet : Filter the most of the Spam attack
– Bad Behavior : Filter and block the most of the Spam attack, bad/suspicious behavior and Code injection
– WP Security Scan : Allows you to change the database table name (from wp_something to example_something), like that attacker may have difficulty to inject suspicious code in your database
– Login LockDown : Prevent user to brute/force your wordpress credentials
– WordPress Database Backup : Allow you to plan backup (daily, weekly, etc…) and send them to your personal email !
ive had a good look through but not discovered it yet, u wouldnt have any clue which type of file it may be do you? thanks
In first, check in your theme folder : ‘function.php’ ; ‘comments.php’ etc…
treid them all and looked on every file on ftp. reinstalled the latest wordpress and a new theme but still no joy 🙁 but thank you for your help
Normal if you still see the comment from “dave” with the email “addy ds@fsmail.net”…
Now you need to fix all the name/email-addresses of all your comments !
Then, you’ll see if new comment arrives with “dave”, if yes, so the issue is still there.
