Support » Fixing WordPress » javascript included from unknown source

  • Hi,

    Our website prolim.com is have some security concerns as the javascript from unknown source is included. We are finding the great difficulty to trace which plugin or theme function is causing this. The javascript is [ redacted ].

    Thanks in advance.

    Regards
    Mohammed Rafique

    The page I need help with: [log in to see the link]

Viewing 5 replies - 1 through 5 (of 5 total)
  • You are running on CloudFlare so I can’t see into your website but I do have this which is kind of pointing at your Child theme files which could actually be a reflection on your parent theme – Zephyr.

    https://sitecheck.sucuri.net/results/https/www.prolim.com

    All that said I can’t tell if that’s a hack or not.

    Carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures and start backing up your site.

    Moderator Jan Dembowski

    (@jdembowski)

    Forum Moderator and Brute Squad

    Moved to Fixing WordPress, this is not an Everything else WordPress topic.

    I’ve redacted that URL, no need to share that here. If you got that jquery.js file then your site is hacked and needs to be deloused.

    Are you running any commercial themes or plugins that came from a less than reputable sources?

    The reason I am asking is that loading jquery.js from an external site is a popular way to compromise your site and often looks legit. It’s not and that URL didn’t really exist until the beginning of May.

    @prolimrafique I’m not able to load any of the javascript from the URL, so it may have been disabled or requires very specific parameters to be loaded, but regardless it is very suspect based on its registration date and it’s host which has lots of other similar suspicious domains.

    kimbosnas

    (@kimbosnas)

    Hey,

    Just wanted to add some context here, I have noticed my client site has been injected with this code, not sure. But I had a developer create a site for my client as I was too busy and I think pirated Plugins caused this to be loaded on to the page.

    after you’ve cleaned up all the plugins you’re not using on the site I would suggest that you run a scan on your databased for the following query “16js.org” I found a tonne and deleted them.

    Now the code is still showing up in the list of running processes in PHPmyadmin anyone know how to remove these?

    Hey,

    To remove this error from the “16js.org” query, comment line 194 wp-content/themes/divi/includes/functions/sanitization.php

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘javascript included from unknown source’ is closed to new replies.