30 {{ upvoteCount | shortNum }}
30 {{ upvoteCount | shortNum }}

My WP blog site got hacked - Check yours!

by mookinman
26 replies
I'm having a problem right now with my site (the stag do site in my sig). A link keeps installing itself "Casino Online", and no matter how many times I delete it, it just comes back.

Does anybody know how I can get rid of this thing? And how did it get there in the first place?

I'd advise anyone with a wordpress-powered site to check their sites to see if they've been affected. I'm sure these spammy links can't be doing any good for my SEO efforts.

Thanks guys,
#blog #check #hacked #site
  • Profile picture of the author candoit2
    Originally Posted by mookinman View Post

    I'm having a problem right now with my site (the stag do site in my sig). A link keeps installing itself "Casino Online", and no matter how many times I delete it, it just comes back.

    Does anybody know how I can get rid of this thing? And how did it get there in the first place?

    I'd advise anyone with a wordpress-powered site to check their sites to see if they've been affected. I'm sure these spammy links can't be doing any good for my SEO efforts.

    Thanks guys,

    Sounds like this is what you want? Blog Update Services
    Signature

    {{ DiscussionBoard.errors[267606].message }}
    • Profile picture of the author schabotte
      You definitely want to keep updating to the latest version of wordpress. It can be a pain if you have a lot of copies but many of these releases are security releases.

      With respect to your specific problem, is that section of your blog hardcoded in your template or is it a widget you activated?
      {{ DiscussionBoard.errors[267625].message }}
      • Profile picture of the author mookinman
        Thanks for the responses, guys. I've got the latest version of wordpress installed. I've checked over the template and can't see anything bogus in there. I've got the same theme installed on another site which doesn't have this same problem.

        I'm still stuck!
        Signature
        Learn in 2-3 days what most men spend a lifetime trying to figure out.
        {{ DiscussionBoard.errors[267895].message }}
        • Profile picture of the author anomaly
          mookinman, any update on how you're getting on finding the source of the problem?
          {{ DiscussionBoard.errors[268963].message }}
  • Profile picture of the author TheRichJerksNet
    You should always secure your blog ... Security should be the first thing you want to do. Just updating your blog with the latest release will not help.

    You can still find my WSO as the links are live until version 2 of my product is released which will cost more.. Get it while you still can, you can find the wordpress secured thread from here ..

    http://www.warriorforum.com/search.php?searchid=381558

    James
    {{ DiscussionBoard.errors[268088].message }}
  • Profile picture of the author warpri
    Perhaps some virus program may be running on your own computer. I have seen some of them on the internet give same troubles.
    Signature

    {{ DiscussionBoard.errors[268188].message }}
    • Profile picture of the author TheRichJerksNet
      Originally Posted by warpri View Post

      Perhaps some virus program may be running on your own computer. I have seen some of them on the internet give same troubles.
      Warpri,
      The problem is not the computer.. It is the wordpress blog that is not secured. Some seem to think if they just upgrade then they are safe but this is not true at all.. Well over 100,000 blogs are hacked each year and some of these are huge popular blogs. Reason is because of the open source code that hackers have access too.. No matter how many realeases wordpress does it will still be hacked.

      Only one way to stop it - see my signature ...

      James
      {{ DiscussionBoard.errors[268617].message }}
  • Profile picture of the author burchd
    Yes, it can hurt your PageRank and even get your site removed...
    Here's a few tips...
    - Upgrade to latest version. Check
    - Install and run the WordPress Exploit scanner
    That should help find files and database entries that have been altered. Note: it won't run on some shared hosts.

    If that plugin won't work, it's a a manual job looking for files and database entries that have changed.

    Here's a few examples:
    - Look for the presence of wp-info.txt containing username and passwords. Remove.
    - Look for files with weird extensions like _new, _old, .pngg, .jpgg, .giff with php code in them. Remove.
    - Look for code in your .php files (at the top) that doesn't belong there (google for different examples). Remove.
    - Look for entries in your database tables, like in wp-options that doesn't belong there.
    - Look through your posts in the database for the insertion of inline frames and other outbound links
    - Look for WordPress users or other admin users in the database that you didn't create.
    - Check your .htaccess files. Has anything been turned off?
    {{ DiscussionBoard.errors[268733].message }}
    • Profile picture of the author TheRichJerksNet
      Originally Posted by burchd View Post

      Yes, it can hurt your PageRank and even get your site removed...
      Here's a few tips...
      - Upgrade to latest version. Check
      - Install and run the WordPress Exploit scanner
      That should help find files and database entries that have been altered. Note: it won't run on some shared hosts.

      If that plugin won't work, it's a a manual job looking for files and database entries that have changed.

      Here's a few examples:
      - Look for the presence of wp-info.txt containing username and passwords. Remove.
      - Look for files with weird extensions like _new, _old, .pngg, .jpgg, .giff with php code in them. Remove.
      - Look for code in your .php files (at the top) that doesn't belong there (google for different examples). Remove.
      - Look for entries in your database tables, like in wp-options that doesn't belong there.
      - Look through your posts in the database for the insertion of inline frames and other outbound links
      - Look for WordPress users or other admin users in the database that you didn't create.
      - Check your .htaccess files. Has anything been turned off?
      You can stop all that from even happening to begin with if you secured your blog... Who wants to spend all day running around looking for hacker files .. certainly not me.. Secure it and forget about it..

      James
      {{ DiscussionBoard.errors[268757].message }}
  • Profile picture of the author I.M.Retired
    James: I think you are banging your head on a brick wall. They don't hear or see what you are saying or offering.

    Having purchased your product and seeing how good it is has really opened my eyes to exactly how inferior these other solutions being proposed here really are!
    {{ DiscussionBoard.errors[268854].message }}
    • Profile picture of the author TheRichJerksNet
      Originally Posted by Dekko View Post

      James: I think you are banging your head on a brick wall. They don't hear or see what you are saying or offering.

      Having purchased your product and seeing how good it is has really opened my eyes to exactly how inferior these other solutions being proposed here really are!
      Many don't until it is too late... They are taught by wannabees non coders and told by wordpress "update" "update".. Updating does not mean anything other than you may get a few new features..

      What people need to understand and it has been said a million times.. "Hackers also get the updates, thus they can still hack your blog". When they have full access to the source code they will always be able to hack your blog..

      The only solution: Is the solution I have .. Change the way your wordpress functions, when you do that hackers can not hack it..

      No plugins are going to help you, no website guides are going to help you, no wordpress staff is going to help you .. This is fact. You can update until the cows come home you you still will be no safer than you was before you updated. WP 2.6.3 is still being hacked, don't you wonder why ??? The answer is right above in my post here...

      James
      {{ DiscussionBoard.errors[268954].message }}
      • Profile picture of the author Franck Silvestre
        Interesting James,

        I am now more concerned with Wordpress security... and everything security in general.

        I'll check your stuff.

        Franck..


        Originally Posted by TheRichJerksNet View Post

        Many don't until it is too late... They are taught by wannabees non coders and told by wordpress "update" "update".. Updating does not mean anything other than you may get a few new features..

        What people need to understand and it has been said a million times.. "Hackers also get the updates, thus they can still hack your blog". When they have full access to the source code they will always be able to hack your blog..

        The only solution: Is the solution I have .. Change the way your wordpress functions, when you do that hackers can not hack it..

        No plugins are going to help you, no website guides are going to help you, no wordpress staff is going to help you .. This is fact. You can update until the cows come home you you still will be no safer than you was before you updated. WP 2.6.3 is still being hacked, don't you wonder why ??? The answer is right above in my post here...

        James
        Signature
        Former Body Guard, Now REAL Traffic & List Building Coach
        >> HOT WSO: Six Figure Solo Sellers <<

        Winson Yeung said: "...Definitively A++ recommended WSO"
        Kevin Riley said: "Franck, glad to see you bringing out MORE and MORE GREAT stuff"
        {{ DiscussionBoard.errors[268993].message }}
  • Profile picture of the author Franck Silvestre
    I just had my main blog and several others wiped out, and learn the "hard way" that once you are asked to upgrade your wordpress blog, you SHOULD do it asap.

    All the best,

    Franck.
    Signature
    Former Body Guard, Now REAL Traffic & List Building Coach
    >> HOT WSO: Six Figure Solo Sellers <<

    Winson Yeung said: "...Definitively A++ recommended WSO"
    Kevin Riley said: "Franck, glad to see you bringing out MORE and MORE GREAT stuff"
    {{ DiscussionBoard.errors[268906].message }}
    • Profile picture of the author Uncle Dimitry
      Originally Posted by aboutalhah View Post

      I just had my main blog and several others wiped out, and learn the "hard way" that once you are asked to upgrade your wordpress blog, you SHOULD do it asap.

      All the best,

      Franck.
      Agreed. Secured or not, you have to upgrade. New features after update are always cool addition.

      Here is a link to check security of your blog online: http://www.blogsecurify.com/
      Signature
      Udimi.com - buy solos
      {{ DiscussionBoard.errors[269056].message }}
      • Profile picture of the author TheRichJerksNet
        Originally Posted by Uncle Dimitry View Post

        Agreed. Secured or not, you have to upgrade. New features after update are always cool addition.

        Here is a link to check security of your blog online: Blogsecurify | Social Media Security

        Ran the test on a WordPress Secured site, one that has been secured by my solution...

        • Found charset text/html; charset=utf-8 (in headers text/html; charset=UTF-8). (Excellent!)
        • Detected WordPress abc latest version is 2.6.3 (your version is different from the latest stable version)
        all tests completed...
        My version 2.6.1 - Fully secured.. Updating means nothing but maybe some features. Updating will not secure your blog.. Only thing that will is you taking control of your blog yourself, over 200 satisfied users on WordPress Secured....

        Notice it found no backdoors or anything open for hackers.. Why is this ? Simple because my solution actually works in protecting your blog. The code has been changed and hackers have no idea what has been changed because they do not have access to the changes.

        James
        {{ DiscussionBoard.errors[269134].message }}
        • Profile picture of the author Uncle Dimitry
          If you protected pair holes in your blog, tomorrow there will more discovered.

          It is like Windows: you have firewall and antivirus, but you have to update Windows. Also, you have to update both antivirus and firewall.

          Nobody is able to guarantee 100% security. The only way is to minimize risk by having have up-to-date software and taking precautions.

          If there is an update, you have to update.

          Originally Posted by TheRichJerksNet View Post

          Ran the test on a WordPress Secured site, one that has been secured by my solution...



          My version 2.6.1 - Fully secured.. Updating means nothing but maybe some features. Updating will not secure your blog.. Only thing that will is you taking control of your blog yourself, over 200 satisfied users on WordPress Secured....

          Notice it found no backdoors or anything open for hackers.. Why is this ? Simple because my solution actually works in protecting your blog. The code has been changed and hackers have no idea what has been changed because they do not have access to the changes.

          James
          Signature
          Udimi.com - buy solos
          {{ DiscussionBoard.errors[269191].message }}
          • Profile picture of the author TheRichJerksNet
            Originally Posted by Uncle Dimitry View Post

            If you protected pair holes in your blog, tomorrow there will more discovered.

            It is like Windows: you have firewall and antivirus, but you have to update Windows. Also, you have to update both antivirus and firewall.

            Nobody is able to guarantee 100% security. The only way is to minimize risk by having have up-to-date software and taking precautions.

            If there is an update, you have to update.
            Trust me they will not be found .. Over 200 customers did not buy my solution because it was worthless. My version of wordpress is NOT known to the hacker world and thus they can not hack it..

            Let me explain why, the normal tricks they try will not work because they have no idea what coding has changed, no idea what was changed in the db, no idea what files have been edited... You see hackers must have something to go on in order to hack..

            Example they know your db tables use wp_ prefix and they know the table names used, thus you are open to hacking. Mine on the other hand they have no idea what the prefix or table names are and thus they can not hack.

            Again updating means nothing because the hackers get those updates also. When they get the updates they just modify their bots and their attacks according to what wordpress changed. WordPress hands the hackers every single blog that is installed on a silver plater.

            Unless ofcourse you have taken measures to secure your blog and change the way it functions..

            James
            {{ DiscussionBoard.errors[269223].message }}
            • Profile picture of the author Uncle Dimitry
              Hackers don't need to know what was changed. They just test.

              This is how every Windows version gets pirated copies. And hey, hackers have no idea what was changed, but they still crack it time after time. And I believe Microsoft has best programmers.

              Originally Posted by TheRichJerksNet View Post

              Let me explain why, the normal tricks they try will not work because they have no idea what coding has changed, no idea what was changed in the db, no idea what files have been edited... You see hackers must have something to go on in order to hack..
              James
              Signature
              Udimi.com - buy solos
              {{ DiscussionBoard.errors[269246].message }}
              • Profile picture of the author TheRichJerksNet
                Originally Posted by Uncle Dimitry View Post

                Hackers don't need to know what was changed. They just test.

                This is how every Windows version gets pirated copies. And hey, hackers have no idea what was changed, but they still crack it time after time. And I believe Microsoft has best programmers.
                That is the entire point, they can not test because their test will not work ... I have been building high end dynamic websites for over 15 years and I fully know how a hackers mind works.

                Their test will not go through beacuse they will try based on wordpress' own code. Well they can not see my code, they don't know what was changed.

                I have been running that same version since before I released v1 of WordPress Secured and not onesingle problem.. No spam, No Hacking, nothing .. Because they fact is they do not know what to do ..

                When I release WordPress Secured v2 it will be even more secure and will be 100% automative on install with full security. As I have re-written wordpress' installation to include auto security measures.

                James
                {{ DiscussionBoard.errors[269270].message }}
                • Profile picture of the author Uncle Dimitry
                  Originally Posted by TheRichJerksNet View Post

                  I have been building high end dynamic websites
                  Yes, building, not hacking...

                  Fact: there is no 100% security. None. Everybody knows that.
                  Signature
                  Udimi.com - buy solos
                  {{ DiscussionBoard.errors[269292].message }}
                  • Profile picture of the author TheRichJerksNet
                    Originally Posted by Uncle Dimitry View Post

                    Yes, building, not hacking...

                    Fact: there is no 100% security. None. Everybody knows that.
                    True never said there was 100% security .. I rather have 95% security over the 0% which wordpress offers it's users..

                    James
                    {{ DiscussionBoard.errors[269295].message }}
  • Profile picture of the author coco28
    I know you said you are sure it's not your template, but if I was you I would install another template for a while to see if the problem was still there...
    {{ DiscussionBoard.errors[268945].message }}
  • Profile picture of the author jmorris18
    James , will you also be releasing version 3, 4 , 5 and so on?

    When can we expect version 2 to be released? Can you give us some highlights in what version 2 will offer?

    Thanks,
    Jason
    Signature

    Jason Morris

    {{ DiscussionBoard.errors[269308].message }}
  • Profile picture of the author TheRichJerksNet
    Just sent you a PM Jason ..

    James
    {{ DiscussionBoard.errors[269477].message }}
  • Profile picture of the author jmorris18
    James , thank you for the PM. I have also sent you an email. I appreciate your feedback when you have an opportunity.

    Thanks,
    Jason
    Signature

    Jason Morris

    {{ DiscussionBoard.errors[269766].message }}
  • Profile picture of the author mookinman
    Can I just give a massive THANKS to everyone who replied to this thread for your help and advice - however my problem still remains. The site in question is www.stagdosite.com - I keep deleting the dodgy entry in wp_options and wp_links in the database but it just keeps coming back. I really don't want to have to buy a product to solve this problem, it must be able to be cured some other way. If anyone out there has had this problem, please get in touch, your help is really appreciated. If I can do something for you in return I will.
    Signature
    Learn in 2-3 days what most men spend a lifetime trying to figure out.
    {{ DiscussionBoard.errors[273138].message }}

Trending Topics