Link to home
Start Free TrialLog in
Avatar of Dbast
Dbast

asked on

How to find an alleged malicious script in WordPress site

A visitor to my Web site at https://giving.heartland.org/ says "Kaspersky advised me it had blocked a malicious URL, and I thought I'd check your source to see if it was your site. Turns out it was, at the very bottom of your source code you have some malicious code executing an iframe to a malicious site via JavaScript."

A quick virus scan of the page online suggested he might be right. How in the world do I go into the WordPress code to find this and get rid of it?
ASKER CERTIFIED SOLUTION
Avatar of Jason C. Levine
Jason C. Levine
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Dbast
Dbast

ASKER

This is EXACTLY what I was hoping for, thank you very much for great response and fast!
You're welcome :)

Another fast thing to check is to look at the file modification dates on the themes and plugins.  If the attack happened recently, one of the files will stand out with a recent modification date and that should be a pretty good indicator...
Avatar of Dbast

ASKER

That's a very good point, thanks again.