Quantcast
Channel: Topic Tag: trojan | WordPress.org
Viewing all 141 articles
Browse latest View live

ChrisReno123 on "Virus or Something Wordpress"

November 5, 2012, 6:05 pm
$
0
0

recently i got a complaint from my client on wordpress that the website had numbers and letters after .# and he said it tried to install avg. I need help identifying this and terminating it. check out my website way2articles.com/Chris i uploaded a seperate blog on way2articles.com/blog and its not on there. Also i tried using all the antivirus plugins and even backup buddys malware scanner. I got nothing so i need some experts here to help.
p.s please excuse my grammer im in a rush to fix this.

Thanks,
Gary

Search

weltmeisterer on "WP loading "bs-art.ru" in the background"

November 19, 2012, 5:11 am
$
0
0

Hello.
When I check for new plugins from the backend of my blog, after clicking the site starts loading properly, but than it says "waiting for bs-art.ru" in the footer line of the browser (firefox) and sends me to a unformated page with menu links.
This "bs-art.ru" seems to load from various sections of the blog. Is this a trojan, a hack or something. And if so: How do I get rid off it? (the spam plugins don't load, obviously)
Thanks.
Marcus

aminmachine on "Malware issues"

December 5, 2012, 5:51 am
$
0
0

Hello everybody! So my website has unfortunately came into contact with a number of malware attackers. I can't log into my webpage without having my antivirus prevent my own website from opening.

I downloaded a plugin to look for any problems on the website and the plugin crashed. I am currently trying to find the ways to get into the script for my website but I can't find a way to get to the script pages.

I was wondering if anyone can help me with this issue, how can I clean up my website? I don't want to put my website's link up because I don't want people to get infected, if you wanna see the website let me know and I'll link it.

slocs777 on "Has my WP Blog been hacked?"

December 10, 2012, 8:33 am
$
0
0

Hi,

I noted when I am in html tab adding a blog this script. It seems to be on all of my pages. Any idea what it is or if I have been hacked?

<script type="text/javascript" src="http://cdncache3-a.akamaihd.net/loaders/1032/l.js?aoi=1311798366&pid=1032&zoneid=62862"></script><script id="__changoScript" type="text/javascript">// <![CDATA[
var __chd__ = {'aid':11079,'chaid':'www_objectify_ca'};(function() { var c = document.createElement('script'); c.type = 'text/javascript'; c.async = true;c.src = ( 'https:' == document.location.protocol ? 'https://z': 'http://p') + '.chango.com/static/c.js'; var s = document.getElementsByTagName('script')[0];s.parentNode.insertBefore(c, s);})();
// ]]></script>

larssonk22 on "[Plugin: Shortcodes Ultimate] Plugin Website Infected With Trojan Virus"

January 9, 2013, 4:10 am

jnahuelfil on "My site is hacked?"

January 24, 2013, 4:35 am

go9media on "[Plugin: BackWPup] Trojans inside backups?"

March 6, 2013, 8:27 am
$
0
0

Hello, a co-worker's anti-virus saying that the backups that I saved to dropbox contain trojans. Is there a file in there that could be mistaken as a trojan or is this actually something I should worry about?

It says specifically backdoor.php.r57shell.i trojan horse.

http://wordpress.org/extend/plugins/backwpup/

chantal68 on "redirect at my log in page"

April 11, 2013, 8:42 am
Search

neo2013 on "Trojan alert"

May 4, 2013, 6:33 am
$
0
0

Dear all,
I have a serious problem with my website. In fact, when I'm connected like an administrator and I go to the homepage with Chrome. Macafee display and alert of a Trojan called JS/Exploit-Blacole.le . It seems that affect a chrome.exe and coming from C:\<user_folder>\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000fb0001cc2.js
and other similar js files.
Do have any idea about it? A help will be very welcome.

Golden Lion Solutions on "can't access my website"

May 19, 2013, 9:43 pm
$
0
0

hi there,

I cannot access the websites http://twoadultstwochildren.com, or http://goldenlionsolutions.com [Moderator note - loud noise upon site load] Nor can I access my.bluehost.com or the control panel. Browsers all say error 137.

I ran a security scan with windows defender and found a trojan w32 malagent, just now. does this have anything to do with it?

furthermore, I checked isthissitedown, and it said my site was down.

I could access the sites fine until yesterday, at around 11pm.
is my site hacked?
thanks

mdjasper on "[Plugin: Tell A Friend: Share/Bookmark/Email/Social Bookmarking Button] Site hacked via this plugin"

June 1, 2013, 8:53 pm
$
0
0

My site was hacked via this plugin enabling hackers to gain access to phpsendmail and distribute pornography via our wordpress installation.

FILE HIT LIST:
{CAV}PHP.Trojan.Spambot : /wp-content/plugins/tell-a-friend/ticketkRS.php
{HEX}php.cmdshell.unclassed.344 : /wp-content/plugins/tell-a-friend/tell-a-friend.php

tell-a-friend.php http://pastebin.com/nDKMMjMu

ticketRS.php http://pastebin.com/8xR03AAs

BIndex.php http://pastebin.com/6aMfuffN

http://wordpress.org/extend/plugins/free-tell-a-friend/

Stefannn on "I have a bad virus!!"

June 4, 2013, 6:23 am
$
0
0

Hi,

I'm kind of new on wordpress (I have used joomla before), got a nice template and decided to work on WP.
I have installed it, then few plugins (Better WP Security too) and now I have a bad virus - HH Trojan.
The virus is detected just in admin backend, but now the site won't work any more... can you please tell me how to get rid of this bad virus and if it's a way to do it without start from 0 again?
If you want, I could give u the user and password from my admin to look there...

The site is:
http://www.businessdesigner.ro

Please help me!

Thanks a lot,
Stefan

davefromsb on "Another slow site including the admin page +Trojan redirect warning while edit"

June 18, 2013, 5:08 pm
$
0
0

So this has been a problem for a while, I've just been too busy and our company did not really need the advertising but now we need to start looking into future business development and this site needs to work.

Story: Our site, http://www.Vernonconstruction.com seemed to be hacked. I cant remember what happened first, the trojan warnings while editing with the admin tools, or google black listing the site and shutting it down. Eventually the guy who made the site was able to get it unblack listed...

Today, the site is up and running however it is painfully slow. I also still get trojan warnings from my commodo anti virus. The window pops up with the trojan.js re director.

We put "IT" people on it, and their opinion is the picture sliders are too big (The photos in them are around 100-200 kb and each slider has about 5-6 pictures) and then they said "Browsers tend to bark at WordPress sites when there's really nothing there to bite." (Referring to the trojan warnings)

I've done searches and have tried a few things, I tried disabling all plug ins, no go, tried updating everything, no go, I tried simplifying the site, nothing. I ran a few of the website scanners people posted on here, and they all say the site is safe. I ran Yslow and the home page gets low marks in compressed components and expires headers. That is about all the details I can come up with. I'm nearing the point where I'm ready to just start over from scratch. Thanks in advance.

davefromsb on "Trojan virus...deleting content fixed slow speed, should I delete theme as well?"

July 10, 2013, 11:06 am
$
0
0

For those of you who have not seen my posts, my word press site was being bogged down probably by a trojan redirect virus. Well I deleted almost everything and the site seems a LOTTTT faster after I loaded some test photos. The theme is still intact, should I delete it as well?

foisya on "[Plugin: Wordfence Security] cannot perform scan"

July 25, 2013, 8:00 pm
$
0
0

I have installed Wordfence on a few sites and it has always worked well.
However I'm having a problem running it on a particular site and the only difference is that Wordpress is installed in a subdirectory and not at the root of the homepage.
I've read a few forums and this had been reported as an issue in the past and was fixed in an earlier Wordfence update. However it doesn't seem to be working for me.
I click on scan and it displays Requesting a New Scan and it turns for a few seconds the does nothing. Nothing appears in the Detailed Activity.
I know for a fact that my site contains a Trojan and would love to be able to fix it with Wordfence.

http://wordpress.org/plugins/wordfence/

Search

annkohl on "virus JS:HideMe-B (Trj)"

August 21, 2013, 1:53 pm
$
0
0

i am not the webmaster, we cannot get in touch with him. I made some changes to our site, and right after that site was blocked from my computer saying we had JS:HideMe-B (Trj). Other people see the site but pop ups come up and it made another persons computer crash. Is there something in Wordpress? I'm only a quick editor and not familiar with anything technical. Help!!

zubo01 on "virus blocked"

March 1, 2014, 2:31 am
$
0
0

Hi

I havent maintained the site I built dedicated to my son after he died. I recently went to view the website jamesszubinski.me.uk and encountered this nasty virus JS/Agent.NCA trojan

I was advised by my hosting support to upgrade the site ... so went into admin and upgraded wp plugins and themes, but still get this virus infection...

anyone help please

thanks

george

tarzan_055 on "Backdoor:PHP/SimpleShell.A"

March 20, 2014, 9:31 am
$
0
0

Dear All,
i appreciate your help in this matter. i am running wordpress for a while now (2 years) and everything is going well. lately someone is trying to drop a trojan on my server and he is keeping on trying everyday 10 to 20 times but my anti-virus is catching the trojan everytime. i get this info

Name: Backdoor:PHP/SimpleShell.A
ID: 2147684280
Severity: Severe
Category: Backdoor
Path: file:_C:\WINDOWS\Temp\phpF0.tmp->[PHP];file:_C:\WINDOWS\Temp\phpF2.tmp->[PHP];file:_C:\WINDOWS\Temp\phpF4.tmp->[PHP];file:_C:\WINDOWS\Temp\phpF6.tmp->[PHP];file:_C:\WINDOWS\Temp\phpF8.tmp->[PHP];file:_C:\WINDOWS\Temp\phpFA.tmp->[PHP]
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
User: servername\IUSR_servername
Process Name: C:\Program Files\PHP\php-cgi.exe

while he/she fails in dropping the trojan but i am afraid he will secceed one day. any help in protecting my server or tracking the user is appreciated.

BR

dothedance on "Trojan?"

March 28, 2014, 4:39 am
$
0
0

Hello,
since yesterday i've been receiving some clicks from a strange referral:
http://i.gyazo.com/35c5459c6bf206299b6470bf53babdda.png

I search about this but I don't found any relevant information but I read that can be a trojan. Do you know what is that? If it's a problem for my page, what can I do?

Thanks!

Best,
BRUNO MOURA

intimez on "[Theme: Origin] Infected Zip File?"

April 19, 2014, 9:19 am
$
0
0

File gets quarantine due to possible infection.

Status: PUA.Script.Packed-2

Anyone else getting this?

Viewing all 141 articles
Browse latest View live
Search