Hacked Mobile Site

  • I have been troubleshooting a hacked WordPress account for the past couple days and cannot resolve a javascript virus. The website is https://www.miravistahomeowners.com

    The website is redirecting to malicious websites on the web, the website theme was out of date though. After updating the theme the website started working normally again except for when on an iphone. On an iphone with safari the website is always redirected to the malicious websites. If javascript is disabled on the phone the redirect does not happen. I’ve gone through the javascript and removed all that I could and looked through most if not all files trying to find the corrupted script. I’ve gone through the troubleshooting disabling all plugins, etc and it does not correct the problem. I will completely redo this website but needed to get this working until then. Programs to clean the issues cannot find the issue or resolve it.

    I think this may be the malicious code thats loaded on every home page but cannot figure a way to remove it to see if its the issue:

    Chrome Debug info on error:
    data:text/javascrip…:1 A Parser-blocking, cross-origin script, https://keit.staticweb.tk/t6mcn1, is invoked via document.write. This may be blocked by the browser if the device has poor network connectivity. See https://www.chromestatus.com/feature/5718547946799104 for more details.
    (anonymous) @ data:text/javascrip…:1

    
<script src=" [redacted: please do not post malicious scripts! ]></script>

    Do you have any ideas why this is happening only on a iphone? Thank you for your time!

Viewing 2 replies - 1 through 2 (of 2 total)
  • Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    Remain calm and carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures.

    If you’re unable to clean your site(s) successfully, there are reputable organizations that can clean your sites for you. Sucuri and Wordfence are two.

    Seeing as the site is fairly basic, you may be able to recreate it quickly (as you’ve already mentioned) by downloading the theme and simply copying the pages and content over (either manually or using the WordPress export tool).

    Looking at it it’s just a Twenty Eleven theme with custom header and background images (that you can easily copy over too).

    Just a thought… that way, depending on your hosting set up, you could set it up as a fresh WordPress install.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Hacked Mobile Site’ is closed to new replies.