Ashdog.ru is a virus malware.
It introduce code into 7 wordpress pages via “sql injection” (to confirm). Creepy eh ? Here are the 7 pages:
- wp-admin/index-extra.php
- wp-admin/index.php
- wp-content/index.php
- plugins/index.php
- themes/index.php
- classic/index.php
- default/index.php
Here is a screenshot of what you can see on those pages if you open them using any text editor application:
How to wipe this kind of virus from my site?
Do a mass-search on your site for the following command : “<script>try {} catch(“.
Then remove the creepy script on each highlighted page.
How to prevent a future intrusion?
Read more about Sql Injection and how to prevent them
Apparently Wordpress has a couple of index.php files with // Silence is Golden. According to what I read on the Web, These are placeholders to prevent directory browsing for hosts that haven’t turned it off.
Your screenshot is confusing, because it leads to believe the “Silence is Golden” message is a sign of the malware infection. It’s the script beneath it that is the problem.
Cheers
Bruno
Comment by Bruno — May 26, 2010 @ 9:00 am
okay ! i thought it was left by the spammer… thanks for pointing this out i’ll modify my post.
Comment by Remi — May 28, 2010 @ 10:35 am