Guys, I work with a designer (I’m a programmer), and we’ve been having this on almost every site my partner works on but not on the ones that I work on.
I believe this is just a local virus that logs to the FTP sites it finds on your FTP client and injects code. I don’t think it has anything to do with WordPress at all. As I said, we’ve had this happen in many different sites; some PHP, and some pure HTML sites. In the HTML only sites, it just injects javascript, but if it sees PHP then it injects PHP too.
Sucks…
I found the answer to this on some post around here (can’t remember which)
In the file wp-includes/cron.php, find:
$argyle = @ fsockopen( $parts['host'], $port, $errno, $errstr, 0.01 );
and replace with:
$argyle = @ fsockopen( $parts['scheme'].'://'.$parts['host'], $_SERVER['SERVER_PORT'], $errno, $errstr, 0.01 );
After this WP comes to life again.
Exact same thing here. Any solution for this yet?
