• Resolved Nick H.

    (@nickholtgmailcom)


    A wordpress site I run for a client has been hacked…
    https://www.jeremyfaison.com
    I only recently had some updates to do and noticed chrome thought the site was in russian and wanted to translate it. So when I checked the page source I found one of those “link farms” right after the content in a non-visible div on all pages….except when I’m logged in everything looks fine and there’s nothing suspicious that I can see. I’ve been searching for all of the common red flag code snippets, and I used exploit-scanner 1.3.3 to see what it could find. it threw a lot of what I think are false positives but i’m not a pro…

    I’ve done re-installs of wordpress from the updates menu and it doesn’t help. Earlier I did a fresh install of wordpress on my Godaddy shared hosting plan (hope that’s not the problem) then imported my database and copied my wp-content folder over and the links were actually gone for a little while which made me think to check FTP logs and access logs, but I haven’t found anything suspicious yet…

    I’m really at a loss, I deactivated and reactivated all of my plugins to see if they were causing the problem and that’s not it either. After working on it all day i’m really tempted to just do a brand new install and rebuild his whole site haha.

    Thanks for any advice you can offer!

Viewing 7 replies - 1 through 7 (of 7 total)
Viewing 7 replies - 1 through 7 (of 7 total)
  • The topic ‘I know you get this all the time…’ is closed to new replies.