[resolved] Malicious code in Twenty Eleven Version 1.5 Header (5 posts)

  1. craigshelley
    Posted 2 years ago #

    I noticed that the text on my blog was changed to italic type today. Looking at the displayed source code, I discovered some malicious code. Upon further investigation, I found the source in the Theme header. I updated the Theme on a different server and compared it. This code: <div id="page" class="hfeed"> in the header was changed to:

    <div id='hideMe'> <p><i> Online Cash Advance Payday Loans <a href="http://www.link-url-removed.com/" title="Online Cash Advance Payday Loans">Online Cash Advance Payday Loans</a></div><script type='text/javascript'>if(document.getElementById('hideMe') != null){document.getElementById('hideMe').style.visibility = 'hidden';document.getElementById('hideMe').style.display = 'none';}</script><div id="page" class="hfeed">

    Is anyone familiar with this malicious code? Any suggestions for how to protect my blog against this kind of malicious attack in the future?

  2. cubecolour
    Posted 2 years ago #

  3. craigshelley
    Posted 2 years ago #


  4. Go Daddy
    Go Daddy Support
    Posted 2 years ago #


    If you continue to have difficulty and would like our hosting team to take a look at the site, you can submit a ticket to us here: http://go.me/WPemail

    If you reply to this thread with the ticket number, I can assist in making sure it's seen by the right people.


  5. funkygorilla
    Posted 2 years ago #

    I just had this too on a Godaddy staging area. Thankfully the host (wphosting.com.au) picked it up.

Topic Closed

This topic has been closed to new replies.

About this Topic