Support » Fixing WordPress » Index files injected with malicious codes

  • Recently my wordpress has been loaded with malicious codes. The code below is the culprit and its injected into most of the files as last line, including index.php in root and all folders.

    <iframe src=”xttp://” width=195 height=158 style=”visibility: hidden”></iframe>

    I re-installed WP and again got hacked. My site is a hosted on windows hosting and so its tedious to set permissions to files and folders. I want to know how to prevent others from modifying my site files? Please help me. I suffered a lot with this and mys site is losing rank and credibility.

Viewing 1 replies (of 1 total)
  • Hi –

    I am having a similar problem — seems iframe hacks are happening often (found 80 references on these boards). The code on my sites (more than one site) was:

    <iframe src="" width=125 height=125 style="visibility: hidden"></iframe>

    Here are the steps I am taking:

    • Clean my own computer and team workers computers with anti-virus software
    • Remove all malicious iframe codes and look for odd software on the hosting server and remove it
    • Change account passwords for Control Panel and FTP
    • Double check all security settings — see CODEX on Security

    It will help us if you update anything you learn here, and also on a thread I started here:

    Thanks, and good luck.

    – Scott

Viewing 1 replies (of 1 total)
  • The topic ‘Index files injected with malicious codes’ is closed to new replies.