1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Wordpress site compromised...need Help

Discussion in 'BlackHat Lounge' started by sysco32, Apr 21, 2014.

  1. sysco32

    sysco32 Jr. VIP Jr. VIP Premium Member

    Joined:
    Feb 5, 2014
    Messages:
    502
    Likes Received:
    198
    Location:
    Skopje/Pecs
    Hi,

    I would need some help.Today i realized that there is a strange link on my single.php / post file. I was looking for it but i didn't find it fast.The reason is the code itself:

    Code:
    <?php if (!current_user_can( 'manage_options' )) { echo '<a href="http://happy-wheels-2-full.com" style="color#333; font-size:0.8em;">happy wheels 2 demo</a>'; } ?>
    As you can see..i never saw it..because it is set in a way that i should not see it.
    My question is that..what do you think i should do now?I mean i am serving adsense also...and there were times..even now my earnings got halved.Maybe that is compromised also.Should i put the whole website with new wordpress theme..etc?
    How do you protect your sites from some intrusions? I even have service incapsula and wordfence install..and still there it is?
    What is you opinion??? THX