Malware Issues

  • I ran a malware scan on the site and got the following result on several pages:

    Malicious
    Reason:
    Spam/SEO injection detected
    Details:
    Detected malicious SPAM/SEO content
    Offset:
    110
    Threat dump:
    View code
    File size[byte]:
    125967
    File type:
    HTML
    MD5:
    C9CE1D1FFCE9E4EA109291B402D05157
    Scan duration[sec]:
    3.054

    Then I looked at the code and it was this:

    [[<a href=”https://ofcs.org/category/weekly-updates/the-grab-bag/”>Video Essays %26#038; Reviews</a&>

    It seems like every ampersand on the site has been replaced with that %26#038;

    I thought at first it was just a &; code, but I’ve never seen one with a # in it and certainly never with a %26. I also noticed that other things like emdashes were also being replaced. So, I assume there’s a .php file somewhere that’s causing these to be inserted, but I have no idea which and how to find it.

    We’re in the middle of trying to migrate because our SSL expired and the site we have now wants to charge us for it, but the site we’re moving to doesn’t. The new site won’t let us migrate with the presence of malware, so I have to figure out some way to fix it.

    Does anyone have any ideas?

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)

  • You would have to consider performing a scan on your account which would locate such files. If it is your own server, installing Monarx OR Bitninja should help. Re-installing WordPress core files would remove the unwanted files if any. If you are unsure how to do it, please take the help of a professional.

Viewing 1 replies (of 1 total)
  • The topic ‘Malware Issues’ is closed to new replies.