You probably want to contact plugins@wordpress.org to enquire why that plugin was removed. The plugin name was "special-recent-posts".
↧
Andrew Nevins on "Special Recent Posts Spam"
↧
pcfreak30 on "[Theme: Bizlight] Hacked library for Malware Download [IMPORTANT]"
@joshuaprovoste, I have inspected the code for 1.0.7-1.0.9. Virustotal is a false positive. There is no malicious javascript in html5shiv.js or html5shiv.min.js
↧
↧
mrspabs on "intermittent 404 errors in dashboard"
wordpress gives me 404 errors when i click on things in the dashboard. operations like upgrade wordpress, upgrade plugin, install plugin, deactivate plugin
i reset the permalinks to see if i can fix, but it doesn't help.
anyway, i get 404 error on pages like this one
http://site.com/wp-admin/plugin-install.php
when i refresh the page, the command sometimes goes through.
i suspect malware but the scans that I ran all came up clean. i have also uploaded a fresh copy of wordpress, upgraded all my plugins.
my .htaccess looks like this
RewriteOptions inherit
# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>
# END WordPressany ideas on how to fix? thanks!
↧
Tara on "intermittent 404 errors in dashboard"
404 indicates failure to communicate with the server. Reasons for this failure to communicate with the server can vary.
Check the server error log for your hosting account for any specific error message. Ask your webhost for assistance to locate them.
If you cannot find error logs or if you don't find any helpful info in the error logs, try Enabling debugging
↧
rfollett on "[Plugin: Wordfence Security] Unknown PDF file links are appearing on my sites"
I have had the same issue on a shared server and all my wordpress sites have been affected with this SEO spam PDF links.. So I have had to purchase a new server and created all the sites again from scratch! Taking me months..
I would love any advice as to how you think they might have got in?
found this line code in wp-includes/random_compat/random_int.php.
?><?php @include_once("/homepages/29/d169973226/htdocs/wp-content/plugins/fusion-core/admin/page-builder/assets/js/palette.php"); ?><?php @include_once("/homepages/29/d169973226/htdocs/wp-content/plugins/LayerSlider/static/codemirror/mode/htmlembedded/htmlembedded.php"); ?>
over 20,000 links to PDFs
↧
↧
gaidaphotos on "Special Recent Posts Spam"
Thank you for your help
↧
tjessberger on "Reporting a malicious plugin listed on the WP plugin directory?"
Hi friends,
In patching up my site today, I found a malicious malware plugin that had been injected into my site. The plugin has an existing page on the WordPress plugin directory, including contributors and a company website. It's clear that they used pharma malware injection to generate leads for their website.
Is there a place I can report this to and have it looked into/removed? I have screenshots/URLs.
Thanks,
-Tim
↧
roadsidephil on "[Plugin: Wordfence Security] Wordfence not picking up HTML/Framer virus that Sucuri found"
I just ran my site through Sucuri's web checker and it came back with five malware entries that appear to be an html/framer virus on my site at http://www.UnderTheCrossbones.com
I ran and re-ran Wordfence scans and it's not finding anything. I was hoping to get WF's help in fixing the bad malware code, but it can't if it doesn't see it.
Am I missing something?
↧
roadsidephil on "[Plugin: Wordfence Security] Wordfence not picking up HTML/Framer virus that Sucuri found"
Ok, never mind... I re-ran the Sucuri check with a cleared cache and it seems to be clean now. Wordfence had found a glitch in the nav that was fixed and it looked like Sucuri was still finding garbage, but the re-run test seems to be clean.
↧
↧
Angelique.van.Campen on "Anti Malware detects treat "wysija-newsletters/js/tinymce/tiny_mce.js""
Hi,
Once and a while I use to check my website on malware with WP plugin "Anti-Malware from GOTMLS.NET". Today this plugin found malware related in /public_html/wp-content/plugins/wysija-newsletters/js/tinymce/tiny_mce.js.
I'm wondering; is this really malware or can I ignore it and if it's a problem, how can I solve it? Of course, it could also be the anti-malware plugin who's causing this message, but therefore my knowledge goes not far enough to judge who or what's wrong.
Any help or suggestion is appreciated.
↧
Angelique.van.Campen on "Anti Malware detects treat "wysija-newsletters/js/tinymce/tiny_mce.js""
Forgot to add the malware threat details as well as the list.
This is screenshot (link) of the threat detail https://www.dropbox.com/s/4dltn04aabqsk9q/Untitled.png?dl=0">
And here's the html code of the threat itself although I have no clue where and how to look for:
[ redacted ]
↧
realdoctorstu on "Hacked site: intermittent new tab advertising"
Been pulling my hair out over this hack: I'm trying to fix a site that intermittently opens a new tab displaying advertising.
Website: http://www.hatcourses.com It often only happens after being on the site for some time and clicking on lots of different pages.
The site appears to be inserting several scripts (that are not in header.php, index.php, footer.php, or any of the template php files that I can find):
[ Spammy ad links redacted, you do not need to share those ]
I've been through all the FAQs and advice threads but to no avail.
I've run malware scans on all of the major plugins: Anti-malware security, AWP antivirus, Quttera Web Malware Scanner, Sucuri Security, WP Doctor... but none have found anything of any use. Exploit Scanner plugin has also failed to find anything that (to my limited eyes) seems malicious. When I started the troubleshooting for this website, two 'subscriber' accounts appear to have been created - that I have now deleted. Admin passwords now also changed.
Plugins have been updated.
I beg the wise WordPress community for its esteemed wisdom!
↧
Jan Dembowski on "Hacked site: intermittent new tab advertising"
I've been through all the FAQs and advice threads but to no avail.
What have you tried specifically? Did you do the "slash and burn to the ground" approach?
↧
↧
realdoctorstu on "Hacked site: intermittent new tab advertising"
No, I haven't done that one. It's not my site, so I would rather try to avoid that approach.
I've followed the advice in the Wordpress FAQ, and the associated links. Also read a handful of additional posts (can't remember them all - but will get a list if you want) that have been suggested from similar threads.
↧
Andrew Nevins on "Hacked site: intermittent new tab advertising"
It might be worth letting your hosting providers know this is happening
↧
realdoctorstu on "Hacked site: intermittent new tab advertising"
Ok, I can try that.
↧
myrafletcher on "Theme customization missing after malware and database changes"
My site got hacked and then it kept saying cannot reach database, I had to make some changes to the database and now I can access the site and the admin area but my theme customizations are gone, my page content is still there.
I have checked the wp_options table and I am not seeing anything off, I think my issue is the wp_postmeta table but I cannot for the life of me figure out how to fix it.
Any help is much appreciated this has been a nightmare!
↧
↧
wfasa on "[Plugin: Wordfence Security] Wordfence not picking up HTML/Framer virus that Sucuri found"
Hello phil,
if this happens again feel free to download the supposedly infected files from your web account using FTP/SSH, put them in a .zip file and email them as an attachment to samples@wordfence.com with a description of events just like you gave here. If it's code rather than files, copy and paste in to a .txt file. Our devs will then have a look at the code to see if there are any patterns we are missing or not.
↧
roadsidephil on "[Plugin: Wordfence Security] Wordfence not picking up HTML/Framer virus that Sucuri found"
Thank you, I'll do that.
I was having trouble finding the garbage code manually. But I usually look for it if there's a discrepancy.
↧
Jan Dembowski on "Reporting a malicious plugin listed on the WP plugin directory?"
While anything is possible, one thing for sure is that your site was compromised.
Please remain calm and carefully follow this guide.
When you're done, you may want to implement some (if not all) of the recommended security measures.
Please do not post any malware code in these forums. If you are convinced that the plugin was compromised on the WordPress repo, please send the details privately to plugins@wordpress.org and they can investigate it.
↧
