Hello ^^
I am not aware of such problems.
but maybe this virus is present in one of your plugins or themes.
You should copy your entire WP site on your hard disk to perform a virus scan files of your site.
So you get the exact location that contains the virus.
is in any case the procedure for which I will opt.
Good luck ^^
maybe in the uploads content also …
JS/Decdec.A is malicious JavaScript code usually injected in HTML pages.
If you visited your site and AV popped up alerting you of a virus, your site’s security *may* have be compromised.
First thing you need to do is contact your host so they can check things out for you.
Next, I’d take a backup (and scan it for malware), then clean/quarantine as required.
Personally, I’d install a fresh copy of WP and upload all the plugins and themes fresh, then search the database for suspect code or restore from a backup.
You will want to get onto this quickly as viruses on site’s can ruin the sites reputation with search engines and browsers, not to mention put a heap of people at risk.
Good luck!
Thread Starter
vogles
(@vogles)
Fixed it! For those of you who run into this same problem here’s what happened. I have WP installed on a child folder, but the website is accessed just by the domain. So instead of typing domain.com/website, you type domain.com. Anyway, somehow the index.php in the root of the domain was overwritten with the virus.
I was able to save my website by deleting that file and putting in a brand spanking new index.php in it’s place. I realized this was the issue when I copied it to my hard drive and instantly my AV kicked in. After I replaced the file, I navigated around my website for a bit, and no issues.
Great work. I’d still double check the other files.
Might also be a good idea to check your file and folder permissions as it shouldn’t be that easy for malicious code to be injected into index.php
Oh, and let your host know, just in case there is a security hole somewhere they need to look into 🙂
