Infection Details
URL: http://domainname.com/wp-admin/load-scripts.php?c
Process: file://C:\Users\Kampret\AppData\Local\Google\Chrome\Application\chrome.exe
Infection: js:IFrame-DL [Trj]

what happened? how do I fix this? please help me … thank you

Hi kampretjak, welcome to the forum :slight_smile:

I am guessing that this is not the exact location in the alert?

The alert suggests that the load-scripts.php file is infected in your site.

If you post the actual link in from the alert, then someone may be able to see what is causing the alert.

Scott

thanks…

URL: http://autoflazh.com/wp-admin/load-scripts.php?c

how do I fix this?

Sorry, something I meant to say…when posting the URL, please deactivate the link so that it is not clickable.

Please can you modify the link, to prevent others potentially becoming infected. (change http to hXXp) Thanks.

I can’t seem to be able to get that page

Ahh…maybe because it is in the admin section…

If wp_admin relates to wordpress then ensure that you have the latest version of wordpress and replace and suspect/infected file.

There has been a lot (thousands) of wordpress sites hacked recently due to a vulnerability in old versions of WP. Though this has usually presented itself in infected .js files.

ok, thanks

If this is the case, maybe I’ll check back …
thank you

You’re welcome.