WordPress.org

Forums

WP site just recieved malware warning (11 posts)

  1. zhoward89
    Member
    Posted 2 years ago #

    I logged into my google webmaster account this morning and it gave me the message, we have found malware on your site. It gives me the list of pages that they found the malware and said it was code injection in the form of a java script leading to earnmoneydo.com. Should I restore all my files on my FTP manager to earlier this month? I contacted Go daddy and they were unable to help much? Any help would be much appreciated. Thanks!!

  2. Tara
    Volunteer Moderator
    Posted 2 years ago #

  3. amentebullo
    Member
    Posted 2 years ago #

    zhoward89 ,I also have the same issue and I am currently investigating the logs. So far I think it is a persistent XSS attack through a vulnerability in the [redacted - if you have a plugin issue please handle it responsibly] plugin. Do you have this plugin on your WordPress site?

  4. imstcorp
    Member
    Posted 2 years ago #

    I'm having the same problem! >:(
    and, for the record, I do not have that plugin :\

  5. WPyogi
    Forum Moderator
    Posted 2 years ago #

    I would not assume it's that plugin - hacks can come from many places - but the solution is the same - see the resources Tara posted above. There's not a quick/easy fix.

  6. WPyogi
    Forum Moderator
    Posted 2 years ago #

    @amentebullo - if you have a security concern about a plugin, please see:

    http://codex.wordpress.org/FAQ_Security#What_is_a_.22security.22_issue.3F

  7. zhoward89
    Member
    Posted 2 years ago #

    Would anyone recommend the services of sucuri.net?? I have heard good things about them removing malware quickly?

  8. WPyogi
    Forum Moderator
    Posted 2 years ago #

    Yes, I've heard good things about them too.

  9. zhoward89
    Member
    Posted 2 years ago #

    I just signed up for securi.net and requested a malware removal of my site. I will keep everyone updated on the status of the repair and if it works.

  10. zhoward89
    Member
    Posted 2 years ago #

    FYI I signed up for sucuri.net and within two days they had my site free of malware and off the Google blacklist. I would highly recommend their services for anyone who encounters this problem in the future!

  11. mcolm83
    Member
    Posted 2 years ago #

    Great resources - I have just started a blog to talk about this.

    [Link removed]

    I'm a developer in Melbourne, Australia and finding way too many websites being hacked. Downtown can be detrimental to business running WordPress as a CMS. The more sites that get hacked, the more we will find that it will lose confidence it the system.

    Thanks!

Topic Closed

This topic has been closed to new replies.

About this Topic