Yesterday I found, my website was hacked. It was really unpleasant surprise. Heckers inserted iframes with harmful content to my website.
The content of incoming 'damage' came from these sources: thelotbet.cn…., superbetfair.cn… IP adress is from Latvia
It took me all day to repear the damage, ’cause all my others web sites were hacked, too. Damn you destructors, don’t you have anything better to do?
April 8th, 2009 at 10:47 pm
I just noticed the same iframe code from ’superbetfair.cn’ in my Wordpress index.php files, too. What did you do to fix the issue on your site(s) - just remove the line of iframe code wherever you found it? Anything else?
April 9th, 2009 at 9:55 am
Yes, remove the lines with iframe, change your ftp and plesk password. I’ve also updated WordPress to latest version and fixed an issue with isapi rewrite filter. After I’ve removed iframe, subdomain for this blog did not work anymore without ‘ index.php ‘ (www.themes.ortobit.info/ index.php). I’ve got 404 error, NOT FOUND. I’ve fixed it with this line: RewriteRule ^/$ /index.php [L] in isapi ini file.