Blocking helps keep users from those addresses from entering your website but won’t stop a referral from your site to any other.
Carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures and start backing up your site.
Hello,
We also had problems with our sites being hacked.
To solve the problem we wrote a query to remove te scripts.
Make sure before you excecute the query you have a backup made from your database.
UPDATE wp_posts SET post_content = REPLACE(post_content,”PUT_THE_SCRIPT_HERE”,””);
UPDATE wp_posts SET guid = REPLACE(guid,”PUT_THE_SCRIPT_HERE”,””);
UPDATE wp_postmeta SET meta_value = REPLACE(meta_value,”PUT_THE_SCRIPT_HERE”,””);
UPDATE wp_options SET option_value = REPLACE(option_value,”PUT_THE_LINK_HERE”,”PUT_HOMEPAGE_LINK_HERE”) WHERE option_name = “siteurl”;
UPDATE wp_options SET option_value = REPLACE(option_value,”PUT_THE_LINK_HERE”,”PUT_HOMEPAGE_LINK_HERE”) WHERE option_name = “home”;
Make sure you use your own Prefix and copy the script from one of the wp_posts.
This happend on our sites since last friday every day!
The redirect is in all posts in wp_posts and also the site_url in wp_options.
replace it in the DB:
UPDATE wp_posts SET post_content = replace(post_content, “<script src=’the url’ type=text/javascript language=javascript></script>”,”)
– Check if a new user exists with name “wordpresssadminn” or any new -> delete it!
– Change your SQL DB Password
– Change your Admin Passwords
– Install Wordfence and activate the firewall
– Update alle possible Plugins, Themes and WP
There are many other posts here with the same problem.
Solved the problem for me..
Uninstalled the following plugin:
https://de.wordpress.org/plugins/redirection/
