Levitra spam on home page

  • Resolved Mycelus

    (@mycelus)


    9 years, 10 months ago

    My website is https://www.theskyforge.com

    This morning I noticed, when NOT logged in, I see:

    kupi? levitra on line

    [removed from public forum]

    It links to this page ^

    kupic means buy in Polish, so it’s some pharmaceudical spam, but the weird thing is the beatfrequencymusic site seems legit, yet the link it links to is dead

    I have zero idea how this popped up. Can someone help me locate and remove it?

    I have already looked at hardening WordPress security in the codex so please dont copy paste that.

Viewing 3 replies - 1 through 3 (of 3 total)
  • Moderator James Huff

    (@macmanx)

    Hardening won’t fix an existing hack, it prevents future hacks. You’ll need to remove the existing hack first.

    Remain calm and carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures.

    Thread Starter Mycelus

    (@mycelus)

    Found about 25-30 malicious files and removed them. Deleted the malicious code in my functions.php file.

    This fixed it. I believe the code got injected when I used my new theme’s (Quince) demo data import feature. It must have piggybacked onto that.

    Moderator James Huff

    (@macmanx)

    Excellent, I’m glad it’s fixed now. ??

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Levitra spam on home page’ is closed to new replies.