I have the exact same problem. About 5-6 of my sites have been hacked, and they have all been running bullet-proof security plugin. I have reinstalled from old/new backups, and nothing seems to work.
I’m beginning to think maybe my computer is infected??
Moderator
Jan Dembowski
(@jdembowski)
Forum Moderator and Brute Squad
Hi there. Nah.. can’t be the comp.. tried from different ones so I dount that’s the problem.. Surely WordPress guys should know how to deal with it? Anyone? 🙂
Moderator
Jan Dembowski
(@jdembowski)
Forum Moderator and Brute Squad
Surely WordPress guys should know how to deal with it?
I’m not sure what you mean by a WordPress guy, but have you read the links I’ve posted? 😉
You’re hacked and you need to delouse your WordPress installation. It happens and when you’ve got it cleaned out also consider the steps in this article too.
http://codex.wordpress.org/Hardening_WordPress
hehe.. cheers, sorry- I posted this before your reply showed up 🙂
thanks for the tips! 🙂
Jan – jestes Polakiem? Do mistrza IT troche mi daleko, wiec gubie sie w informacjach z linkow ktore podales.
Justyna
Moderator
Jan Dembowski
(@jdembowski)
Forum Moderator and Brute Squad
Laughter. I was born in the Polish province of Brooklyn. Sadly, the only Polish I can pass successfully is “Nie rozumiem polskiego.” And I had too look up the spelling too!
Most Poles get that at the rozumiem part. 😉
I’ve not checked myself (language barrier), but this site may have some good technical Poles who can assist.
Home
– Jan DÄ™bowski (If English had an emb!)
Do you use any FTP program?
Hi,
While deleting plugins may help, that’s sort of like raking the lawn before the storm.
That said, once hacker has compromised your site the steps above will help in clearing up the situation. Once you are done clearing up the site it’s time to work through your lesson’s learned:
– Keep your blog, plugins and theme updated (at least weekly)
– Delete all inactive plugins and themes
– Change all your passwords (dashboard, ftp)
– Move your site to a web host who provides daily malware scanning
– Look at external backup/monitoring services like codeguard and cloudsafe365
Proactive security is key to your future success online.
I’ve tried just about anything. After further examination, 11 website in total are compromised — all on the same hosting server. I’ve tried restoring from backups (with changes passwords to all accounts), and even then the iframe returned.
I formated my computer to ensure it is clean from ANY malware, and in its fresh state repeated the above process and still it came back (password changed once more).
Eventually I tried the hosting script installer with a fresh version, and even with an empty and fresh, updated wordpress, the iframe is still there! The only conclusion I see is that the hosting has been compromised. Anything can think of any other option?
@qwebz: Please post your own topic.
