I would like to note that this has happened to me before with a wordpress theme; with regards to the somesite.com/*.*.js file, I removed it entirely and it messed up the theme. I was told this is typical in themes with the exception of the url and that .js file is local if needed so if you remove that snippet of code and the theme no longer works change the path to the local version.
Hope this helps someone, I know it drove me nuts several months back trying to figure out how to fix the theme after removing the malicious crap.
What in the hell is going on with these kinds of people makes on sense to me what so ever.
Please report that also to the police.
Since those kiddys don't use proxys anayway, they are easy to catch.
@ynwaps - LOL, what you going to say? "I'm using a plugin that I didn't pay for (in other words "stole"). Could you bust them so that I can continue to use this un-paid plugin without any problems."
LOL - that remark cracks me up.
Honestly guys...you get what you pay for. You hunting for FREE info...get rich quick methods...and plugins for FREE that would otherwise cost the general public money. When you start dealing in this realm, you have to expect some tinkering within the "FREE" nulled scripts.
Not trying to be a jerk...but honestly...stop bitching...check your scripts prior to using them...and spend your time making money.
As BlackhatOps says, it's to be expected when using cracked and nulled stuff that some will be poisoned..
I never, ever use any script before seeing the source and checking it over - that's how I came across this surge of infections.
As for the post above, yes, it's normal to have references to .js files - but 99% of the time should be on your own site/blog, not offsite (unless trusted sites)
Si
This kind of act is non ethical and the user must be banned till the last day on earth.I just wonder what is so fun in making someothers cry....
@alpha23 - lol...non-ethical? Compared to what? downloading nulled and crack plugins?
Thanks very much for this info.
One question: What do you put in the place where it says to replace with...?
I had to delete one of my site last month and rebuild it, thanks to some stupid morons
IF you refer to my reply above, lets say you find some strange code in a file. This here is a dummy example to show. In a file you find this here: tregETdgEG9845D
Then you can replace the text shown below:
PHP Code:
get_status('./','REPLACE THIS WITH THE STRING TO SEARCH FOR');
PHP Code:
get_status('./','tregETdgEG9845D');
And it should list all files that have that code in it.