Hacked site

  • Resolved beantown123

    (@beantown123)


    2 years, 1 month ago

    Hi, my website has been hacked with Google Adsense code getting inserted into the header and footer. I am trying to find the actual cause of the hack such as which plugin, if any, caused the hack. Is it possible to determine this from the Ithemes logs? In the details of the changes in Ithemes, I see that the user_id is empty and the remote_ip is listed, but unsure if this would help me.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Support chandelierrr

    (@shanedelierrr)

    Hi @beantown123, thank you for reaching out, and I’m sorry to hear about that. Unfortunately, iTSec cannot tell how the hack occurred. I recommend contacting a malware removal service to determine how the breach happened. They may also have some additional recommendations based on the underlying cause. You may also enable the File Change detection feature of iTSec, so if you see unexpected file changes, you can try comparing the files to an older version in your recent backup to see the changes. Enabling the User Logging feature would also help you monitor user activities on the site.

    Plugin Support chandelierrr

    (@shanedelierrr)

    Hi @beantown123, I hope the information provided helped resolve the issue. Since we haven’t received a response, I’ll mark this post resolved. If you still need some assistance, feel free to open a new support topic, and we’d be happy to assist. Thank you!

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Hacked site’ is closed to new replies.