Header.php Hack

007dutchy:

You can reinstall your themes to temporarily fix the problem. I do not know of a permanent fix yet — if you can tell me a list of the plugins and themes you have, it may help track down the source.

Are all of your plugins and themes, and WordPress itself, up to date?

Also, do you have other sites within your same hosting account? A number of the hacked sites we’ve seen recently have had a second (or third) site on their accounts that was not up to date.

I have around 20 sites on my hosting account.. will update all of them today!

Ok, let us know how it goes! I just saw your post on the other thread too. If you still have trouble after the updates to the 20 sites, feel free to post again. I’m marking this one as resolved for now, so we can keep track of posts with new replies (you can mark it as “not resolved” if needed later.)

Hi,

I have the same problem in header,php , a few days ago delite the code from header but now is back )))

Of course I dont have all plugins update and etc but its the first time when I see somthing like this.

I delite all themes form all websites which I dont use but ….. I think after few days it will back ((

Oh, just forgot , this can help ””’ Admin-Ahead Linux Malware Detect Extension for Plesk””” ????

deriksx: We have a guide to cleaning a hacked site (see the link below) — I’m not sure if the plesk extension would detect this type of infection or not. If you still have trouble after following the cleaning guide, including the high sensitivity scan and other options, can you make a new post in this forum, instead of replying here, to keep issues separate? Thanks!

Here is the guide:
How do I clean my hacked site using Wordfence?

Hi,

If I correct understan the manual helps clean the viruses what I get when install wordfence ??

Just I see the manual but dont read all because my english is no very well.

Thanks.