2012-04-01, 02:40:59
devaintfire Wrote:mvlcek Wrote:devaintfire Wrote:Nope no wordpress here, just getsimple, is it part of the plugin that resizes and crops the image?
No, it isn't.
Is /xo/ix-xyz-graph-paper//wp-content/themes/modularity/includes/timthumb.php one of the directories/files having been created?
Yeah it is, so I am guessing that they are suggesting that the illegally uploaded directory contains the exploited script, a paradox!
So here's what they've said
"The xo folder was pulled in from an external source which included timthumb.php rather than your site running Wordpress. The method the attackers achieved this via script injection;"
djr.heliohost.org/me