I think my blog was hacked

nathantheboss

Newbie
Feb 20, 2019
46
60
My homepage has an invisible link towards pron websites, I have no idea how it got there.
Capture.PNG
I feel stupid, I can't find where these links are in my files :weep: spent 4 hours, they are nowhere, what would you do?
 
These links are in the database, not in the files.
Just wait a bit... there are plenty of goog wp programmers here, I'm sure they'll be able to assist you for free.
 
Looks like you used fake crap stolen wp themes or plugins .

You been hacked or themes where re written to get free traffic .

I would report to host and start all agin .

Now your domain had sex on it be bad domain anyway ....

Unless your in the sex game online .

Chinese and sex adult links fuck domains up ....
Unless your in that niche .
 
I have downloaded the full database, no mention of the link, it's not in the files either, maybe encrypted or comes from another url
 
I did a quick search on Google and other blogs are hit by this, I will see what plugins we are all using and compare to find which one is the malware
 
Have a old backup? Before it happens? Use that old backup. Check header.php, index.php most probably is in there.

Check your plugins, remove one by one, and check if the list continues in the theme, check another themes and disable it one by one.

If you are using Linux (VPS or Dedicated) use this: Maldet and ClamAV.
https://www.hivelocity.net/kb/how-to-install-maldet-and-run-a-scan/
Use your old Backup and don't install plugins that never have been updated.

Nulled plugins or themes, are dangerous be careful with that.

Is much probably you are being injected with that urls from Plugins.

In last case, reinstall the SO in VPS / Dedicated server. Do Clean Reinstall.
 
That is the reason why i am saying don't use these free plugins and themes from these forums on your money sites. A lot of them have some malware or some back door for hacker to hack your site.
 
That is the reason why i am saying don't use these free plugins and themes from these forums on your money sites. A lot of them have some malware or some back door for hacker to hack your site.
Better to say, don´t use themes and plugins from non trusted sources, since there are plenty of themes and plugins that are shared here in the forum, that are CLEAN, non modified files.
 
Don't use nulled plugins and themes. If you have a previous back-up, install that and remove all the bad plugins/themes.

Get a good cache and security plugin.

If you are still having an issue, get a dev from hire a freelancer in BHW and get it sorted.
 
The problem is fixed, last time I download a plugin from an unknown source.

I didn't notice these links and they were probably there for 3 months. Rankings are ok.

I am lucky the link injection was only on the homepage.
 
Well, this is in your database, SQL Injection, or maybe you're using a nulled plugin or theme.
Please install wordfence and scan your site, to what I see, the hacker is not interested in taking down your site, he just want a backlinks, and for someone to go this far, then you're not the only victim, I think it's probably plugin or theme
 
The problem is fixed, last time I download a plugin from an unknown source.

I didn't notice these links and they were probably there for 3 months. Rankings are ok.

I am lucky the link injection was only on the homepage.

Care to share what plugin it was, and did you get it in this forum?? Might ease up members thoughts about plugin and themes on this forum.
 
My homepage has an invisible link towards pron websites, I have no idea how it got there.
View attachment 146426
I feel stupid, I can't find where these links are in my files :weep: spent 4 hours, they are nowhere, what would you do?
It seems your Worpress has been malware infected , You have to check WP core , plugins , themes to find out the Eval / encrypted codes injected by the hacker and also delete/close the backdoor sources . If you are looking for professional help for malware cleaning please check https://www.hibiscustechnolab.com/wordpress-malware-removal , It is a one time cost of $99 with 90 days support after the cleaning process . Hope it helps..thank you . If you have a high traffic blog always go for an ongoing maintenance service to avoid critical situations like this, Always keep your WP core , themes , plugins, and Your server's PHP version up to date to avoid security vulnerabilities. If you are a busy blogger / Website owner this Wordpress maintenance service plans are worth to check https://www.hibiscustechnolab.com/wordpress-care/
 
Last edited:
You can change your generic admin log in URL to something completely unique, so hackers can't find it. Ensure your blog has an SSL certificate Install the free Sucuri plugin for additional security measures.
 
Back
Top
AdBlock Detected

We get it, advertisements are annoying!

Sure, ad-blocking software does a great job at blocking ads, but it also blocks useful features and essential functions on BlackHatWorld and other forums. These functions are unrelated to ads, such as internal links and images. For the best site experience please disable your AdBlocker.

I've Disabled AdBlock