Results 1 to 8 of 8

Thread: Website footer hacks

  1. 11-17-2008, 12:03 PM #1
    twrg
    twrg is offline Junior Member
    Join Date
    Apr 2008
    Posts
    10

    Unhappy Website footer hacks

    Hola, I have posted on this before and thought the problem was fixed. But after the fourth time it is quite tiresome to have spam footer links added to my website. grrrr

    http://www.twresourcegroup.com and the links can be viewed at http://209.85.173.132/search?q=cache...UJA:en&strip=1.

    Some of the fixes I've done are: cleared the footer file and reloaded it, reloaded themes, deleted themes and reloaded. But I am no coding expert. Anyone have any ideas how to remove and prevent this from occuring?

    Thanks for the help.
  2. 11-17-2008, 01:23 PM #2
    redsox9's Avatar
    redsox9
    redsox9 is offline Senior Member
    Join Date
    Feb 2006
    Location
    North of Boston, MA
    Posts
    1,658

    Default

    Are you using CMS software? Are there updates available that phase out possible security risks or holes?
    redsox9 - Go Red Sox!!! 2004 and 2007 World Series Champions!
    Visit FenwayFanatics.com, home to Boston Red Sox baseball fans everywhere... now on Facebook and Twitter!
  3. 11-17-2008, 01:55 PM #3
    twrg
    twrg is offline Junior Member
    Join Date
    Apr 2008
    Posts
    10

    Default

    Using Wordpress that was installed through Fantastico and running the latest version of Wordpress (use Automatic upgrade plugin). Oh yea, changed passwords too.
    Last edited by twrg; 11-17-2008 at 02:01 PM.
  4. 11-17-2008, 02:05 PM #4
    twrg
    twrg is offline Junior Member
    Join Date
    Apr 2008
    Posts
    10

    Default

    Another note, I have 3 other domains associated with the account that are uses the same file storage and they have not been affected.

    - http://www.ko3a.net
    - http://www.goingbigger.org
    - http://www.crossroads-connection.com

    I'm baffled.
  5. 11-17-2008, 02:11 PM #5
    Early Out's Avatar
    Early Out
    Early Out is offline Former Moderator, Still Respected
    Join Date
    Mar 2006
    Location
    Sector R
    Posts
    4,650

    Default

    I'm no Wordpress expert (to say the least!), but I'd be suspicious of the one theme that's getting hacked.
  6. 11-17-2008, 02:26 PM #6
    twrg
    twrg is offline Junior Member
    Join Date
    Apr 2008
    Posts
    10

    Default

    I have changed themes while removing all the old theme files prior to this intrusion.
  7. 11-18-2008, 06:16 AM #7
    gingerwave's Avatar
    gingerwave
    gingerwave is offline Member
    Join Date
    Oct 2008
    Posts
    41

    Default

    I have several WP blogs and have never had a problem. I would like to know the solution if you find it. Very interesting.
  8. 11-18-2008, 06:23 PM #8
    Nancy's Avatar
    Nancy
    Nancy is offline Junior Member
    Join Date
    Nov 2006
    Posts
    16

    Default Check Access Logs

    I had a hack couple weeks ago. The only way I could track it was to download the control log file into an Excel spreadsheet and go through it with a fine tooth comb to see what files were being accessed and where the hole was the hacker used.

    In my case it turned out to be a vulnerability in a php scripting program I had downloaded. From there they uploaded a hacked SHELL program and could have touched everything and anything they wanted to on my site.

    I removed the offending app. Deleted the SHELL program (which was installed in multiple directories by that point. And continued to monitor the Control Logs for the next few days to confirm the door was closed.

    Good luck.
« Previous Thread | Next Thread »

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules