Title: malware alert
Last modified: August 20, 2016

---

# malware alert

 *  [mhartel](https://wordpress.org/support/users/mhartel/)
 * (@mhartel)
 * [14 years, 12 months ago](https://wordpress.org/support/topic/malware-alert/)
 * somehow someone got access to wp-blog-header.php and placed an encrypted javascript
   at the bottom, which calls a 1×1 px iframe and the browser answers with a malware
   alert. this has happened twice over the past month.
 * I removed the javascript and now changed the file permissions to 444, ie non-
   writable.
 * are there other ways to prevent this from happening in the future?

Viewing 1 replies (of 1 total)

 *  [Mark Ratledge](https://wordpress.org/support/users/songdogtech/)
 * (@songdogtech)
 * [14 years, 12 months ago](https://wordpress.org/support/topic/malware-alert/#post-2144018)
 * See [FAQ: My site was hacked « WordPress Codex](http://codex.wordpress.org/FAQ_My_site_was_hacked)
   and [How to completely clean your hacked wordpress installation](http://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/)
   and [How to find a backdoor in a hacked WordPress](http://ottopress.com/2009/hacked-wordpress-backdoors/)
   and [Hardening WordPress « WordPress Codex](http://codex.wordpress.org/Hardening_WordPress)
   and tell your host. Change all passswords. Scan your own PC.

Viewing 1 replies (of 1 total)

The topic ‘malware alert’ is closed to new replies.

 * In: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/)
 * 1 reply
 * 2 participants
 * Last reply from: [Mark Ratledge](https://wordpress.org/support/users/songdogtech/)
 * Last activity: [14 years, 12 months ago](https://wordpress.org/support/topic/malware-alert/#post-2144018)
 * Status: not resolved

## Topics

### Topics with no replies

### Non-support topics

### Resolved topics

### Unresolved topics

### All topics