Website Malware MW:JS:GEN2?web.js.script-injection.003

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author WFMattR

    (@wfmattr)

    10 years, 5 months ago

    Do you know which file the infection is in, or is this only from an external scan of the site?

    If you know which file, you can send me a copy and I can tell you if it can be repaired or removed. It may be a variant that we cannot detect yet, so we can also add this to future scans too. My email address is mattr (at) wordfence.com

    If you don’t know which file, it’s possible the bad code is in the theme’s footer.php, but it might also be added using WordPress hooks. To check, you can try installing any theme from wordpress.org (to be sure you have a clean copy) and switching to it temporarily, and see if the problem still occurs. If the problem stops happening, you can delete and reinstall your original theme — if you’ve modified the theme files make sure to save the infected ones, in case you need to copy & paste prior modifications you did. (If you do find the bad file in the theme folder, sending a copy to me would still help too.)

    If it’s not in the theme, do you have shell access to the site?

    -Matt R

    Thread Starter kgpetersen

    (@kgpetersen)

    10 years, 5 months ago

    Thanks for your response.
    I ended up updating to the latest version of WordPress and all scans are now coming back clean.

    Cheers,
    kp

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Website Malware MW:JS:GEN2?web.js.script-injection.003’ is closed to new replies.