wp-includes folder hacked?

Viewing 2 replies - 1 through 2 (of 2 total)

  • Hi,
    As far as I can tell your site seems free of malware:

    Try this free malware checking service to verify:
    https://www.UnmaskParasites.com/security-report/?page=laurenbphoto.com/blog/

    Because bots or people are trying to connect to links on your website, that does not mean your site is hacked.

    I’m not seeing any redirects or odd content here.

    Thread Starter lrbphoto

    (@lrbphoto)

    So the Host Gator security team figured it out:

    Upon inspection we found that malware had indeed been injected into your account. The vast majority of injections are done by malicious users who have found exploits in scripts previously (and legitimately) installed on the account. Some are also the result of a compromised password due to a virus-infected PC, so please make sure to scan any computer used to access this account with at least two anti-virus programs. We have taken the below actions to prevent further malicious activities. Please make sure to update your password to update all the scripts/plugins on your account to the latest version.

    This account was exploited due to an outdated timthumb script installed with a theme. To prevent further exploitation in this manner we have updated all the timthumb scripts on the account to the latest security release.

    Damn you TimThumb!

    It’s annoying that I have to worry about my theme files being up to date.

    Lincoln

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘wp-includes folder hacked?’ is closed to new replies.