Title: Exploit?
Last modified: August 21, 2016

---

# Exploit?

 *  Resolved [windyweather](https://wordpress.org/support/users/windyweather/)
 * (@windyweather)
 * [11 years, 10 months ago](https://wordpress.org/support/topic/exploit-1/)
 * I received the following from my hosting service.
    Does this indicate that somehow
   a bad guy breached WordPress security? Of course I am automatically updating 
   my site and using the latest WP.
 * Thanks,
    ww
 *     ```
       Hello xxx,
   
       Please note that on a further check of your account we noticed the following exploited scripts:
   
       /home/xxx/public_html/wp/wp-includes/img.php
   
       The above scripts are now disabled to avoid any other issues. Please see an example of exploited content:
       ================
       <?php /*45637*/ @error_reporting(0); @eval(base64_decode("aWYg [code moderated] =")); /*45637*/ ?>
       ==================
       ```
   

Viewing 2 replies - 1 through 2 (of 2 total)

 *  [Mark Ratledge](https://wordpress.org/support/users/songdogtech/)
 * (@songdogtech)
 * [11 years, 10 months ago](https://wordpress.org/support/topic/exploit-1/#post-5137418)
 * Looks likes you got hacked.
 * Work your way through these resources and follow all instructions to completely
   clean your site or you may be hacked again. See [FAQ: My site was hacked « WordPress Codex](http://codex.wordpress.org/FAQ_My_site_was_hacked)
   and [How to completely clean your hacked wordpress installation](http://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/)
   and [How to find a backdoor in a hacked WordPress](http://ottopress.com/2009/hacked-wordpress-backdoors/)
   and [Hardening WordPress « WordPress Codex.](http://codex.wordpress.org/Hardening_WordPress)
 * Change all passwords. Scan your own PC. Use [http://sitecheck.sucuri.net/](http://sitecheck.sucuri.net/)
   before and after.
 * Tell your web host you got hacked; and consider changing to a more secure host:
   [Recommended WordPress Web Hosting](http://wordpress.org/hosting/)
 * If you can’t do the work yourself, consider looking for a reputable person to
   fix it correctly on freelancing sites such as [Elance.](http://elance.com/)_ (
   It’s **not** a good idea to respond to unsolicited emails from forum users offering
   to work for you.)_
 *  Thread Starter [windyweather](https://wordpress.org/support/users/windyweather/)
 * (@windyweather)
 * [11 years, 10 months ago](https://wordpress.org/support/topic/exploit-1/#post-5137468)
 * Sigh…
    You know, it might be time to move to another hosting service. I better
   never get a message like this from Squarespace or Weebly. I know that I’m going
   to cause a flame storm by saying this. But just like the steam engine was better
   than the horse cart, maybe this new model of website hosting is better than the
   older one. I’ll have to think about it. – ww

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Exploit?’ is closed to new replies.

## Tags

 * [exploit](https://wordpress.org/support/topic-tag/exploit/)

 * In: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/)
 * 2 replies
 * 2 participants
 * Last reply from: [windyweather](https://wordpress.org/support/users/windyweather/)
 * Last activity: [11 years, 10 months ago](https://wordpress.org/support/topic/exploit-1/#post-5137468)
 * Status: resolved

## Topics

### Topics with no replies

### Non-support topics

### Resolved topics

### Unresolved topics

### All topics