Viewing 4 posts - 1 through 4 (of 4 total)
  • Author
    Posts
  • June 16, 2015 at 8:42 pm #460378
    robsdesigns

    Hi guys,

    One of my sites keeps getting hacked with spam emails being sent out. All my wordpress plugins/themes are up to date. I have security on there but somehow it keeps getting this.

    I installed the plugin anti-malware and ran a scan it gave me this:
    ————
    Read/Write Errors

    …/public_html/wp-content/themes/enfold/config-templatebuilder/user56.php
    …/public_html/wp-includes/images/wlw/themes.php

    Potential Threats

    * NOTE: These are probably not malicious scripts (but it’s a good place to start looking IF your site is infected and no Known Threats were found).
    ?…/public_html/wp-content/plugins/wp-edit/includes/functions.php
    ?…/public_html/wp-content/themes/enfold/config-layerslider/LayerSlider/helpers/phpQuery.php
    ?…/public_html/wp-content/themes/enfold/config-layerslider/LayerSlider/static/js/greensock.js
    ?…/public_html/wp-content/themes/enfold/config-layerslider/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js
    ?…/public_html/wp-content/themes/enfold/config-layerslider/LayerSlider/static/js/layerslider.transitions.js
    ?…/public_html/wp-includes/SimplePie/Net/search8.php
    ?…/public_html/wp-includes/css/alias95.php
    ?…/public_html/wp-includes/images/code.php
    ?…/public_html/wp-includes/js/tinymce/tiny_mce_popup.js
    —————————–

    I tried to download the …/public_html/wp-content/themes/enfold/config-templatebuilder/user56.php
    AND …/public_html/wp-includes/images/wlw/themes.php
    file but it wouldnt download?

    Can someone please look at the theme and see if those files are normal? I have included wordpress and ftp login info below.

    June 17, 2015 at 11:58 am #460664
    Ismael

    Hi robsdesigns!

    Thank you for using Enfold.

    Please refer to this link on how to prevent email spamming: https://codex.wordpress.org/Combating_Comment_Spam

    You can install one of these plugins in order to protect your site from email spamming: https://wordpress.org/plugins/search.php?q=spam

    Regarding the malicious scripts, those are usually false positives results, files that are being detected as malicious even though valid. If they are in anyway vulnerable to any hacking attempt, the WordPress community will have made any announcement or warning regarding that particular file or function.

    Regards,
    Ismael

    June 17, 2015 at 2:35 pm #460796
    robsdesigns

    Hi Ismael,

    Comment spam is not the issue.

    The problem we are having is someone is hacking into the site and sending out emails.

    I was hoping you can tell me if this file is an enfold file and could it be the cause of the problem:
    public_html/wp-content/themes/enfold/config-templatebuilder/user56.php
    As I said it doesn’t let me download it for some reason.

    June 18, 2015 at 5:28 am #461075
    Rikard

    Hi!

    That is not an Enfold file, please try to delete it to see if your problem goes away.

    Regards,
    Rikard

  • Author
    Posts
Viewing 4 posts - 1 through 4 (of 4 total)
  • You must be logged in to reply to this topic.