Comments on: Wordpress Site Hacked

By: Sinema

Sinema — Sun, 22 Feb 2009 07:01:52 +0000

Thanks good posting that fixed my problem

By: the english guy

the english guy — Mon, 08 Dec 2008 20:08:11 +0000

Thanks, that fixed my problem, took me ages to find out what was causing it and ran into this page/site, applied it, and got my blog(s) back.

By: blosque.com | Suas Visitas do Google Sumiram? Seu Wordpress Pode Ter Sido Hackeado

Wed, 18 Jun 2008 14:08:51 +0000

[...] Magpie Brain – WordPress Site Hacked [...]

By: Chando’s Internet Marketing Secrets Blog » Blog Archive » WordPress Blogs and More Hacked by Google Redirects

Fri, 13 Jun 2008 04:01:17 +0000

[...] Magpie Brain – WordPress Site Hacked [...]

By: WordPress Blogs and More Hacked by Google Redirects « Lorelle on WordPress

WordPress Blogs and More Hacked by Google Redirects « Lorelle on WordPress — Thu, 12 Jun 2008 02:07:20 +0000

[...] Magpie Brain – WordPress Site Hacked [...]

By: Simon Brunning

Simon Brunning — Wed, 11 Jun 2008 19:04:09 +0000

Good to see the site back – and good to see a post on it, too!

By: Tiffany

Tiffany — Sat, 07 Jun 2008 00:58:07 +0000

Thanks for the info. I did as you instructed. I am soooo ticked. This has been going on for a week and someone just told me today after hundreds of dollars lost…grrr. I hope this gets rid of the issue….for awhile.

By: Max

Max — Sat, 07 Jun 2008 00:33:36 +0000

I am getting killed by this thing. I have 20-25 blogs getting roughly 10k per day total. I’ve dropped to 4k a day over this week. I’ve upgrade a lot of them to the latest wp, but traffic is still dipping like crazy. I’ve checked for “rss_f541b3abd05e7962fcab37737f40fad8″ and I don’t have that line. Now, I don’t even know what to look for. I’m almost ready to change them all out to a different blog platform. What’s nuts is I was able to see this landingpage “your-needs.info”, then all of a sudden, I don’t see it, but my traffic is still wayyyy down. This thing has to be still popping up. Can anyone tell me how I can see what my google ref should see without actually going through google? Just want to make sure it’s not a cookie thing. This royally sucks.

By: Marlex Systems

Marlex Systems — Wed, 04 Jun 2008 23:23:28 +0000

Probably, if you only detele the rss input at your MySQL, the hack can attemp again. Try to do all the things thah I describe in the WordPress support, and find in your active-plugins into the wo_options table in the MySQL database for a image used as plugin.

If you have them, try to delete and deactive and active again all the plugins, this is for update the list of active plugins witouth deleting lines in your MySQL.

Have a nice day.

http://www.marlexsystems.org

By: Rob

Rob — Tue, 03 Jun 2008 11:15:32 +0000

Just a thought — anyone dealing with this hack might want to advise their Windows-based readers to redirect your-needs.info to 127.0.0.1 using the system32\drivers\etc\hosts file in the Windows directory. Just add the line

127.0.0.1 your-needs.info

to hosts and the redirect is defeated locally.

Note that on Vista, you need to run your text editor as Administrator in order to edit the hosts file.

Obviously, if the exploit moves to another site, so should your hosts line entries.