Moderator
Jan Dembowski
(@jdembowski)
Forum Moderator and Brute Squad
Your server was compromised alright. Just out of curiosity, can you list the plugins you used?
You have a lot of work ahead of you to clean this up.
Read this
http://ocaoimh.ie/2008/06/08/did-your-wordpress-site-get-hacked/
And then read it again.
Read this too
http://codex.wordpress.org/Hardening_WordPress
Upgrade to the latest version if you have not already. You need to see if there are any users added to WordPress that you don’t know about/don’t belong there.
You need to go through your files and find where the spammy links are being added. If it’s in wp-config.php or some other file, you’ll need to make sure that is cleaned up before you can consider yourself good file wise. Look everywhere and use fresh copies of your WordPress installation, plugins, and themes.
Look at your posts and comments and see if there are any spammy links there. You can export your whole blog to WXR and then examine the whole thing in your favorite text editor.
Look at your server’s log files. If you are on a shared server, get help from your provider. You need to identify if this was a compromise of WordPress or your server. If you do not identify the entrance which the attacker got in, odds are they will be back.
Once you have cleaned up your hacked blog, harden it so this does not happen again.
Good luck.
I have the same problem… But the dumb thing is that not only by wordpress blogs but also my older websites have been hacked. This issue is not related to wordpress…
cuteqqqqqq, is your blog hosted with Dreamhost?
HI jdembowski,
i don’t use any plugin…. just standard wordpress. I just update to verion 2.7 for 2day only. my hosting server was hack……
Hi gauharjk,
I’m sure my websites was hacked is related to wordpress. After I deleted the wordpress from my server.. then my website was stable now.. no any hack again….so upsad why wordpress will got the big hole for hacker… too bad
Moderator
Jan Dembowski
(@jdembowski)
Forum Moderator and Brute Squad
my hosting server was hack……
I’m sure my websites was hacked is related to wordpress.
See anything contradictory in those two statements…?
so upsad why wordpress will got the big hole for hacker… too bad
What most likely happened was that WordPress was hacked because your host was compromised.
If it’s on a web server it does not matter to spam-link-bad guys if it’s WordPress or whatnot. They’re job is to get their garbage onto people’s browsers. Your job is to make sure that you don’t damage your neighbors on the Internet and keep your web site hack free.
Self hosted WordPress is not for everyone.
If you are not going to do the work and keep your host server up to date, or use a provider who actually does what they should (some hosting companies are both lazy _and_ stupid, sorry to say) then consider using sites such as WordPress.COM that do the work for you.
