Maaari ba akong kumita ng pera mula sa mga laro sa mobile?.REGISTER NOW GET FREE 888 PESOS REWARDS!

fraguada
(@fraguada)

15 years, 5 months ago

https://www.livearchitecture.net
Hello all. This is the first time posting an issue here. I have had some strange behavior on our site lately (above). Browsers began to say that our site is a phishing site. I found something at the end of our index.php which was essentially a link to (sorry I deleted the full line of code).

“https://www.freeguard.biz/j100coock.js”

If I delete this, its fine for a bit, but eventually comes back. My .htaccess file looks like this:

# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>

# END WordPress

Any help in eradicating this would be greatly appreciated!

Viewing 1 replies (of 1 total)

Moderator Jan Dembowski
(@jdembowski)

Forum Moderator and Brute Squad

15 years, 5 months ago

Nice website but as you said, the “bad thing” is still there. Here’s some steps to try, which you might have begun or tried already.

The problem with file based compromises is that if you run on a shared host, it might not be your installation but a neighbor on the same box. Or another set of software you are using.

First things first: make a full backup of your database and files and put that somewhere safe. Get ready to be able to restore as a safety net.

https://codex.www.ads-software.com/Backing_Up_Your_Database
https://codex.www.ads-software.com/WordPress_Backups
https://codex.www.ads-software.com/Restoring_Your_Database_From_Backup

Get fresh copies of WordPress https://www.ads-software.com/download/ as well as your theme https://graphpaperpress.com/2008/06/02/f8-remixed-portfolio-theme-for-wordpress/ and fresh copies of all of your plugins.

Now give this a good read

https://codex.www.ads-software.com/FAQ_My_site_was_hacked

From that FAQ I find these to be really helpful

https://ocaoimh.ie/did-your-wordpress-site-get-hacked/
https://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/

After you’ve put on fresh copies and de-loused your blog, harden the file and directory permissions:

https://codex.www.ads-software.com/Hardening_WordPress#File_permissions

Hardening the directories and files might interfere with plugin updates as well as uploads. Once your blog is clean and stays clean you can play with the file permissions to make your blog friendlier to updates and uploads.

If you make any gross mistakes you can put it back via a restore and start over again.

Good luck.

Viewing 1 replies (of 1 total)

The topic ‘WordPress Intrusions?’ is closed to new replies.

WordPress Intrusions?

Tags

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics