Title: Website Malware MW:JS:GEN2?web.js.script-injection.003 Last modified: August 30, 2016 --- # Website Malware MW:JS:GEN2?web.js.script-injection.003 * Resolved [kgpetersen](https://wordpress.org/support/users/kgpetersen/) * (@kgpetersen) * [10 years, 5 months ago](https://wordpress.org/support/topic/website-malware-mwjsgen2webjsscript-injection003/) * Hi There. When I scan my website with Securi I receive the following message: * Website Malware MW:JS:GEN2?web.js.script-injection.003 [http://afcat.com.au/](http://afcat.com.au/)( View Payload ) * Your plugin doesn’t detect this. I have seen a couple of other threads with this same problem with no obvious resolution. * Please advice how to remove this malware? * Cheers, kp * [https://wordpress.org/plugins/wordfence/](https://wordpress.org/plugins/wordfence/) Viewing 2 replies - 1 through 2 (of 2 total) * Plugin Author [WFMattR](https://wordpress.org/support/users/wfmattr/) * (@wfmattr) * [10 years, 5 months ago](https://wordpress.org/support/topic/website-malware-mwjsgen2webjsscript-injection003/#post-6839355) * Do you know which file the infection is in, or is this only from an external scan of the site? * If you know which file, you can send me a copy and I can tell you if it can be repaired or removed. It may be a variant that we cannot detect yet, so we can also add this to future scans too. My email address is mattr (at) wordfence.com * If you don’t know which file, it’s possible the bad code is in the theme’s footer. php, but it might also be added using WordPress hooks. To check, you can try installing any theme from wordpress.org (to be sure you have a clean copy) and switching to it temporarily, and see if the problem still occurs. If the problem stops happening, you can delete and reinstall your original theme — if you’ve modified the theme files make sure to save the infected ones, in case you need to copy & paste prior modifications you did. (If you do find the bad file in the theme folder, sending a copy to me would still help too.) * If it’s not in the theme, do you have shell access to the site? * -Matt R * Thread Starter [kgpetersen](https://wordpress.org/support/users/kgpetersen/) * (@kgpetersen) * [10 years, 5 months ago](https://wordpress.org/support/topic/website-malware-mwjsgen2webjsscript-injection003/#post-6839371) * Thanks for your response. I ended up updating to the latest version of WordPress and all scans are now coming back clean. * Cheers, kp Viewing 2 replies - 1 through 2 (of 2 total) The topic ‘Website Malware MW:JS:GEN2?web.js.script-injection.003’ is closed to new replies. * ![](https://ps.w.org/wordfence/assets/icon.svg?rev=2070865) * [Wordfence Security - Firewall, Malware Scan, and Login Security](https://wordpress.org/plugins/wordfence/) * [Frequently Asked Questions](https://wordpress.org/plugins/wordfence/#faq) * [Support Threads](https://wordpress.org/support/plugin/wordfence/) * [Active Topics](https://wordpress.org/support/plugin/wordfence/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/wordfence/unresolved/) * [Reviews](https://wordpress.org/support/plugin/wordfence/reviews/) * 2 replies * 2 participants * Last reply from: [kgpetersen](https://wordpress.org/support/users/kgpetersen/) * Last activity: [10 years, 5 months ago](https://wordpress.org/support/topic/website-malware-mwjsgen2webjsscript-injection003/#post-6839371) * Status: resolved