365 posts
  • Has been part of the Envato Community for over 5 years
  • Has collected 500+ items on Envato Market
  • Located in United Kingdom
kops says

Hi folks,

A site I built up from a theme has been compromised due to, I’m pretty sure, the timthumb script.

After I visited the site a few days ago, java tried installing itself on my machine and I got some message about ‘couldn’t generate a pdf’. Firefox then started redirecting me all over the place nad it’s taken a few days to get the laptop back on course.

I switched out the timthumb script on the website for the new version, deleted the generic ‘admin’ account, isntalled and configured Bulletproof Security and started seeing which files had been changed. As far as I can see, the only file changed was wp-config.php where some code has been added to the end with about 200 blank lines wither side of it. I’ve deleted that code and kept my fingers crossed.

The code keeps re-appearing though and I have no idea what to do apart from continually deleting it.

The code is 30 lines, beginning:

if (isset($_GET['pingnow'])&& isset($_GET['pass'])){

I’m buggered if I have to re-build the site from scratch as I’m tied up with other sites for weeks.

Any suggestions really appreciated as I’ve exhaused google search!

Jon.

147 posts
  • Has been part of the Envato Community for over 4 years
  • Has referred 10+ members
  • Has sold $250,000+ on Envato Market
  • Has collected 10+ items on Envato Market
+2 more
FlexiPress says

Jon,

have you checked this topic?

http://wordpress.org/support/topic/iframe-hack-3

Helpful Information

  • Please read our community guidelines. Self promotion and discussion of piracy is not allowed.
  • Open a support ticket if you would like specific help with your account, deposits or purchases.
  • Item Support by authors is optional and may vary. Please see the Support tab on each item page.

Most of all, enjoy your time here. Thank you for being a valued Envato community member.

Post Reply

Format your entry with some basic HTML. Read the Full Details, or here is a refresher:

<strong></strong> to make things bold
<em></em> to emphasize
<ul><li> or <ol><li> to make lists
<h3> or <h4> to make headings
<pre></pre> for code blocks
<code></code> for a few words of code
<a></a> for links
<img> to paste in an image (it'll need to be hosted somewhere else though)
<blockquote></blockquote> to quote somebody

:grin: :shocked: :cry: Complete List of Smiley Codes

by
by
by
by
by
by