Possible hacker intrusion on my site

Should I open mysql database?

no thanks Who, I don’t need examples. Have seen plenty.

If it was me I would know if this code is expected or not and as such wouldn’t be asking about being hacked if it was expected. Therefore it is malicious for the sake of the question being asked. No such thing as harmless code that is uninvited. No different than spam, does no harm but is anything but benign.

I’m in mysqladmin.

I have an “experiment” site on godaddy — as far as I can tell they dont provide a simple way to download your server logs.

I’m looking through my own “hosting control panel” right now for something that resembles what they talk about here:

https://help.godaddy.com/article.php?article_id=2372&topic_id=388

NO MeneL001, you are NOT in the right place.

ok I’m waiting for instructions.

IcelandDream,

Thats a crock of crap — especially given the little information thats been provided. As i ALREADY said — it may very well have been a referer.

You must get a LOT of malicious referers then, if you use your logic.

“not expected”
“uninvited”

—

Now how about you just chill and let me help this person, and lay off the juice.

Man! I think GoDaddy actually charges for the logs, by purchasing Traffic Facts I would get access to those logs. That’s not fair.

MeneL001,

You may need to email godaddy to ask them how to access your logs. Ive located the traffic facts link and mine is empty, and tells me to spend money. Additionally, I see NO “logs” link.

aha! you noticed that too I see ??

Going back to the OP for a second, it said –

“when I notice that one of the lines read “

One of the lines in what? A line on your site or a line on the octagate timer site?

If it’s on the timer site and you don’t trust it, then don’t use that timer site.

If it’s on your site somewhere, then it’s more bothersome, but it would be helpful to know *where* it appears.

Is actually on the octagate site, when it gives me the results of my pages loading time it includes with js that I don’t know where is coming from. What I don’t have is any other wordpress install to see if is something from all installs. I’m worry because I don’t want to lose a year of work. I do backups with wp-db-backup but I don’t know for how long its been there.

I will contact GoDaddy and report back.

Thanks,

Luis

Whoami, wow. I’ll stay away that’s for damn sure. ‘juice’ that’s funny and ironic. so bye

Sorry Mene for not being able to help. But there are enough experts without me ever trying.

Btw, octagate is also showing this ..

https://www.yceml.net/0240/10492144-1.jpg

I’ve looked at your javascript. Ive looked at your CSS. Ive looked at your source code, both in my browser and through several source code viewers, and I see neither that or that .js inside your pages.

Theres nothing that appears to be hidden, no urlencoded stuff, nothing.

Now that I understand what you saw, you ought to be looking through your files. I am NOT suggesting that you freak out and reinstall.. just that you take a very close at the content of your files, and that you start with your theme files.