WordPress.org

Ready to get started?Download WordPress

Forums

WordPress Site Hacked? (3 posts)

  1. silverlight001
    Member
    Posted 2 years ago #

    I've had a few sites hacked in the past (mostly through insecure hosts) and now employ usual safeguards wp-security, limit logins etc..

    However - this one is new to me so welcome any guidance

    http://webcache.googleusercontent.com/search?q=cache:R36wemcVn1QJ:www.e-bbrewerylofts.com/detroit-property-prices.html/detroit-skyline+&cd=15&hl=en&ct=clnk&gl=uk

    At the bottom of the site is showing sex, porn content etc.

    Looking at the site I can't see any of this or indeed where it's coming from - a look at the database posts table doesn't show anything either.

    Maybe it's coming via a dodgy plugin - the ones I'm using are:

    Akismet
    Deactivate | Edit | Settings
    Used by millions, Akismet is quite possibly the best way in the world to protect your blog from comment and trackback spam. It keeps your site protected from spam even while you sleep. To get started: 1) Click the "Activate" link to the left of this description, 2) Sign up for an Akismet API key, and 3) Go to your Akismet configuration page, and save your API key.

    Version 2.5.6 | By Automattic | Visit plugin site
    Select Genesis Simple Hooks
    Genesis Simple Hooks
    Deactivate | Edit
    Genesis Simple Hooks allows you easy access to the 50+ Action Hooks in the Genesis Theme.

    Version 1.8.0.2 | By Nathan Rice | Visit plugin site
    Select Google Analytics for WordPress
    Google Analytics for WordPress
    Settings | Deactivate | Edit
    This plugin makes it simple to add Google Analytics to your WordPress blog, adding lots of features, eg. custom variables and automatic clickout and download tracking.

    Version 4.2.4 | By Joost de Valk | Visit plugin site
    Select Google XML Sitemaps
    Google XML Sitemaps
    Deactivate | Edit
    This plugin will generate a special XML sitemap which will help search engines like Google, Yahoo, Bing and Ask.com to better index your blog.

    Version 3.2.7 | By Arne Brachhold | Visit plugin site | Settings | FAQ | Support | Donate
    Select LinkSync
    LinkSync
    Activate | Edit | Delete
    Easily synchronise the links list on multiple blogs with one central site.

    Version 4.3.48f | By dcoda | Visit plugin site
    Select OPML Importer
    OPML Importer
    Deactivate | Edit
    Import links in OPML format.

    Version 0.2 | By wordpressdotorg | Visit plugin site
    Select Simple 301 Redirects
    Simple 301 Redirects
    Deactivate | Edit
    Create a list of URLs that you would like to 301 redirect to another page or site

    Version 1.03 | By Scott Nellé | Visit plugin site
    Select WordPress Database Backup
    WordPress Database Backup
    Deactivate | Edit
    On-demand backup of your WordPress database. Navigate to Tools → Backup to get started.

    Version 2.2.3 | By Austin Matzko | Visit plugin site
    Select WP-Cumulus
    WP-Cumulus
    Deactivate | Edit
    Flash based Tag Cloud for WordPress

    Version 1.23 | By Roy Tanck | Visit plugin site
    Select WP Security Scan
    WP Security Scan
    Deactivate | Edit | Settings
    Perform security scan of WordPress installation.

    Version 3.0.9 | By WebsiteDefender | Visit plugin site

    Welcome any comments / help.

    Thanks

  2. esmi
    Forum Moderator
    Posted 2 years ago #

  3. The Hack Repair Guy
    Member
    Posted 2 years ago #

    Is very possible you were hacked previously, and hacker simply left a back door script in place. That back door script is then being used to re-hack your site at the hackers pleasure.

    So any manner of plugins or themes you've installed since then will not prevent the back door script from being run.

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags

No tags yet.