Hi,
I get Avast warnings about JS:Small-C on two Wordpress blogs I set up for someone else, and which, of course, they've not updated WP versions in almost a year. I am trying to help them solve the issue.
In a previous thread on this topic, Mentalist suggested a way to delete the malicious code, but I could not make it work.
I went into the header.php folders both via C-Panel/File Manager AND with my FTP client (I use Core FTP Lite)..
I found the following code, as suggested by mentalist:
<?php wp_head(); ?></head>
However, I cannot find ANY indication of the malicious code whether I access via either FTP or C-panel:
<script language=javascript>document.write(unescape('%3C%7 --- and etc
Help!
FYI, both blogs use a custom template created with Artiseer, if that is relevant. The blog sites are at:
hxxp://drpeelittle.com
hxxp://dancingfrogranch.com
Any suggestions MUCH appreciated!
Malcolm