Hacked Site | WordPress.org

wonderwilson
(@wonderwilson)

13 years, 5 months ago

Hi, One of my sites has been hacked and I’m finding it difficult to remove. A user of the site got in touch to say the site was advertising viagra – when viewed the site shows no evidence of this. I checked all source code to try and fine any malicious code to no avail, though when I checked the database I found some reference. Has anyone else seen this? I’ve got a back-up though the client has had a lot of content added since. I can’t see any additional files that have been added – could it be a plugin, i have a few installed. Here’s a list:

Advanced Recent Posts Widget
Select All-in-One Event Calendar by Timely
All-in-One Event Calendar by Timely
Animated Back To Top Button
BackUpWordPress
Select Better Search
Better Search
Breadcrumb Trail
Easy Contact Forms
Cookillian
Exec-PHP
Google Analytics for WordPress
Select Hide Widget Title
Hide Widget Title
Hierarchical Pages
Select Image Widget
Image Widget
jQuery Collapse-O-Matic
pageMash
Raw HTML
Really Simple Gallery Widget
Redirection
Sub Pages widget
Video Embed & Thumbnail Generator
WP-Filebase
WP-Table Reloaded

I’m also running better wp security and have run the site through http://sucuri.net/ with no issues found. Any ideas?

Thanks.
Darren Wilson

Viewing 3 replies - 1 through 3 (of 3 total)

WPyogi
(@wpyogi)

13 years, 5 months ago

Have you gone through all the usual recommended resources:
http://codex.wordpress.org/FAQ_My_site_was_hacked
http://wordpress.org/support/topic/268083#post-1065779
http://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/
http://ottopress.com/2009/hacked-wordpress-backdoors/

Additional Resources:

http://sitecheck.sucuri.net/scanner/
http://www.unmaskparasites.com/
http://blog.sucuri.net/2012/03/wordpress-understanding-its-true-vulnerability.html
http://codex.wordpress.org/Hardening_WordPress
http://www.studiopress.com/tips/wordpress-site-security.htm

If the spam ads are not visible on your site to you, it’s also possible that the problem is on the user’s computer — although in this case, that may be less likely since you know you’ve had hacked problems…

Thread Starter wonderwilson
(@wonderwilson)

13 years, 5 months ago

Yeah, I’ve gone through those resources. It’s a large site (400 odd pages and thousands of posts) and I’m struggling to find the exactly where the fault may lie. I’m hoping someone else has had a similar problem. Thanks for the advice.

The Hack Repair Guy
(@tvcnet)

13 years, 5 months ago

Fairly common issue.
Check your files and likewise do some searches within your database.

Once you locate and remove the hack it still may take months for all the pharmacy links to drop off of Google. Let’s just say been there done that… No fun at all.

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Hacked Site’ is closed to new replies.

Tags

hacked

In: Fixing WordPress
3 replies
3 participants
Last reply from: The Hack Repair Guy
Last activity: 13 years, 5 months ago
Status: not resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics