Hacked Line of Code on Page

  • ktraxel

    (@ktraxel)


    11 years ago

    I have a friend who has a WordPress blog for her nonprofit organization and apparently someone has placed some code into it. Her non profit is https://www.bellaflies.org and if you go there, take a peek at the source code starting at line 131 and if you Google it, look at what the “About” says. Someone embedded tons of lines of code to Viagra type sites. I am not familiar with WordPress coding, but I am trying to help her. I can’t find the lines of code anymore on Firefox, but if I switch over to IE it is right there starting at line 131. I don’t know why I can’t see it in Mozilla anymore.

    How can I get that out of there? When I log in and look at the pages, they only give you so much you can do in there with HTML. So how did they get those links (all that code???) in there and how do I get them out?

    Someone PLEASE help.

    I just need to know how to get it out of there.

Viewing 5 replies - 1 through 5 (of 5 total)

  • I can see the site is hacked and hacked codes have been inserted in it.
    In most of the cases these codes are inserted in encrypted format.
    Use some plugins like Anti-Malware to scan and find the hacked code and remove them.

    Make a backup of websites before making changes in code.

    vrazer

    (@vrazer)

    What you’re referring to is called the “pharma hack”. It’s a common security breach for all CMS based websites (e.g. Joomla, WordPress, Drupal sites). Finding the source of this sort of hack is usually a bit of chore as it has a lot of different forms.

    You might try posting a request over to jobs.wordpress.net or Googling for something like “hack repair”.

    Either way, I’d recommend trying to secure your friend’s website or speaking with someone that can. Otherwise the issue is just going to keep happening over and over again.

    vrazer

    (@vrazer)

    By the way… if you haven’t already spoken with your web host, that’s a good place to start. They probably can’t help much with keeping the hack from coming back but sometimes they can restore your site back to a time before it was hacked.

    Hi,

    Your friend’s site looks like it has been infected with Blackhat SEO Spam.

    You can try the suggestions posted by Krishna on this thread.

    I also tried running the site through
    Sucuri’s SiteCheck Scanner and there were 2 pages which looked like they may (or may not) be contributing to the problem: 404testpage4525d2fdc and 404javascript.js.

    If they’re not pages that your friend’s site needs, I would suggest removing them, even if they are not the root cause of the problem.

    Hope this helps.

    Thread Starter ktraxel

    (@ktraxel)

    Thank you sooooo much! I appreciate all of this information! I passed it all along to her, and she has someone that does the work, so she is going to forward it to him as well.

    If I view the source code of the page, I can see where it was put in, the thing is, I can’t get to that part of the page within the admin area. It’s blocked I guess (???)

    You guys have been great! After all this is a non-profit for a 3 year old that passed away and for someone to do this is just wrong. Well I guess they just don’t care and it is going to happen, I shouldn’t be surprised. But she is my friend, so I kinda take it personally.

    But thank you again. We will see what we can do!

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Hacked Line of Code on Page’ is closed to new replies.