Title: header.php malicious code
Last modified: October 26, 2018

---

# header.php malicious code

 *  [caglardinc](https://wordpress.org/support/users/caglardinc/)
 * (@caglardinc)
 * [7 years, 7 months ago](https://wordpress.org/support/topic/header-php-malicious-code/)
 * hello. my host is deleting my header.php file because of malicious code. but 
   I dont know how to remove it. can you help me please?
 * here is the header.php
    [https://0bin.net/paste/Zmt3k3dgpLfGjoI+#sGXEDoIspJFchSX7wdQyBCSXIHaodRuK7KuvWB5GhT7](https://0bin.net/paste/Zmt3k3dgpLfGjoI+#sGXEDoIspJFchSX7wdQyBCSXIHaodRuK7KuvWB5GhT7)

Viewing 2 replies - 1 through 2 (of 2 total)

 *  [ketan Umretiya](https://wordpress.org/support/users/ketanumretiya030/)
 * (@ketanumretiya030)
 * [7 years, 7 months ago](https://wordpress.org/support/topic/header-php-malicious-code/#post-10818991)
 * You need to manually delete those code from a header.php file. you can check 
   all core file like function.php, wp-config.php, index.php, footer.php any way
   you can found anused code script please remove it.
 *  [cleancoded](https://wordpress.org/support/users/cleancoded/)
 * (@cleancoded)
 * [7 years, 7 months ago](https://wordpress.org/support/topic/header-php-malicious-code/#post-10820098)
 * Your link above doesn’t seem to work. If you can access the header.php file from
   the theme editor (from the WordPress backend, go to Appearance > Editor), you
   can scroll down to see the code you need removed, remove it, and save changes.
   If you do not have access to the File Editor, you may need to access your theme
   files via FTP (root > wp-content > theme folder > header.php) and remove the 
   code, upload the updated version to replace the current version.
 * You can also do a bit of scanning and review of any malicious code in your theme
   files with the Wordfence plugin, have a look at [https://wordpress.org/plugins/wordfence/](https://wordpress.org/plugins/wordfence/)

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘header.php malicious code’ is closed to new replies.

 * In: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/)
 * 2 replies
 * 3 participants
 * Last reply from: [cleancoded](https://wordpress.org/support/users/cleancoded/)
 * Last activity: [7 years, 7 months ago](https://wordpress.org/support/topic/header-php-malicious-code/#post-10820098)
 * Status: not resolved

## Topics

### Topics with no replies

### Non-support topics

### Resolved topics

### Unresolved topics

### All topics