Title: website malware Last modified: March 10, 2020 --- # website malware * [dwdmaroszek](https://wordpress.org/support/users/dwdmaroszek/) * (@dwdmaroszek) * [6 years, 2 months ago](https://wordpress.org/support/topic/website-malware/) * Hi guys, I’ve noticed that in the WooCommerce summary page there’s an JS injecten below the address section: * _[ Malware deleted, don’t post that here ]_ * Do you have any thoughts how to fix this? I’ve scanned my site with WordFence and nothing was found. Please help! - This topic was modified 6 years, 2 months ago by [Jan Dembowski](https://wordpress.org/support/users/jdembowski/). Reason: Moved to Fixing WordPress, this is not an Everything else WordPress topic * The page I need help with: _[[log in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fwebsite-malware%2F%3Foutput_format%3Dmd&locale=en_US) to see the link]_ Viewing 3 replies - 1 through 3 (of 3 total) * [sellmark](https://wordpress.org/support/users/sellmark/) * (@sellmark) * [6 years, 2 months ago](https://wordpress.org/support/topic/website-malware/#post-12527271) * Faced this problem in few sites of my client. Fixed it by removing the script code from the site. * The malicious string is the same for every compromised file, so mostly downloading whole project from FTP, and then CTRL+SHIFT+F all files in project for the phrase you pasted should make your day. – You can also look for it in the Database using various combination of searches using for example [https://pl.wordpress.org/plugins/search-and-replace/](https://pl.wordpress.org/plugins/search-and-replace/) * I have found the malicious code also in my own custom post type body( `the_content()`) * After that I’d recommend to: - clean up your PC and browsers’ extensions as they could be the main security- hole `define( 'DISALLOW_FILE_EDIT', true );` in wp-config Change your database password Check if all WP User accounts and their e-mails are known to you. If not, just suspend or delete them. Install some basic security for WP Ask your hosting company to help you by installing anti-virus on the server(or just launching you the option – this may be extra – billed for you). * There’s probably better way, but my solution led up to get free of viruses in short time(hope they don’t come back soon). - This reply was modified 6 years, 2 months ago by [sellmark](https://wordpress.org/support/users/sellmark/). - This reply was modified 6 years, 2 months ago by [sellmark](https://wordpress.org/support/users/sellmark/). * Thread Starter [dwdmaroszek](https://wordpress.org/support/users/dwdmaroszek/) * (@dwdmaroszek) * [6 years, 2 months ago](https://wordpress.org/support/topic/website-malware/#post-12527431) * Thank you, also I’ve found this solution: [https://www.wpdesk.net/blog/flexible-checkout-fields-vulnerability/](https://www.wpdesk.net/blog/flexible-checkout-fields-vulnerability/) - This reply was modified 6 years, 2 months ago by [Jan Dembowski](https://wordpress.org/support/users/jdembowski/). * Moderator [Jan Dembowski](https://wordpress.org/support/users/jdembowski/) * (@jdembowski) * Forum Moderator and Brute Squad * [6 years, 2 months ago](https://wordpress.org/support/topic/website-malware/#post-12527452) * Moved to Fixing WordPress, this is not an Everything else WordPress topic. * Don’t post malware on this site, that’s not allowed and removed when found. * Please remain calm and give this a good read. * [https://wordpress.org/support/article/faq-my-site-was-hacked/](https://wordpress.org/support/article/faq-my-site-was-hacked/) * When you have successfully deloused your site then consider giving this a read too. * [https://wordpress.org/support/article/hardening-wordpress/](https://wordpress.org/support/article/hardening-wordpress/) Viewing 3 replies - 1 through 3 (of 3 total) The topic ‘website malware’ is closed to new replies. * In: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/) * 3 replies * 3 participants * Last reply from: [Jan Dembowski](https://wordpress.org/support/users/jdembowski/) * Last activity: [6 years, 2 months ago](https://wordpress.org/support/topic/website-malware/#post-12527452) * Status: not resolved ## Topics ### Topics with no replies ### Non-support topics ### Resolved topics ### Unresolved topics ### All topics