I’m starting to get a little tired of this crap. I have a bunch of sites hosted on one account. A couple of weeks ago all of them were hacked. A line of code was added to every php file in my account. That code would sometimes automatically redirect people to one of a list of websites.
So after pulling my hair out for a while, I changed all ftp passwords and my backend host password,and got my unix command line on and removed all the code from the infected files. Then I made sure that every site with wordpress was up do date (several weren’t). And I scanned both computers that I use to access the backend to these sites and checked them with two additional malware/virus scanners besides my standard one. (Nothing found).
Two days later, it happens again. I double double check, and apparently I missed one installation of wordpress. For the heck of it, I also went through all my sites, deleting a whole bunch of scripts in case one of those has a vulnerability.
Then I made sure that my hosting account was set to records all raw access logs so I can catch/ban the perpetrator if it ever happens again.
I’ve been so mad that I haven’t written anything in like three weeks.