Today when browsing through Google Webmaster I noticed I had this warning “Notice of Suspected Hacking” for one of my sites.
One of my non gambling WordPress sites has been hacked. My NOD32 Antivirus blocked a threat called JS/Kryptik.LU trojan when visiting any page on this site. It must have placed a cookie as it would only do it once.
So I uploaded a plugin called WP Security Scan which helped me secure my site. I also signed up for a free beta account at Website Defender. They scanned my account and found two possible malicious files:
wp-content/plugins/oiopub-direct/include/fusion.php
wp-content/avatars/lightwindow.php
These files had some seriously suspicious code in them. I’ve deleted them and my site seems to be fine for now. Keeping my fingers crossed.