view-source

akiunlim · May 2016

Dear Support, we ask for help. on our website fashionhousebyxiang.com at the time we open it and press CTRL + U seen the following script

<script id="mfn-dnmc-config-js">
//<![CDATA[
window.mfn_ajax = "http://www.fashionhousebyxiang.com/administrator/admin-ajax.php";
window.mfn_mobile_init = 1240;
window.mfn_nicescroll = 40;
window.mfn_parallax = "translate3d";
window.mfn_prettyphoto = {style:"pp_default", width:0, height:0};
window.mfn_sliders = {blog:0, clients:0, offer:0, portfolio:0, shop:0, slider:0, testimonials:0};
window.mfn_retina_disable = 0;

Attached print screen of the source code of our web.

akiunlim · May 2016

how to eliminate the source of the script? because our web hack attack some time ago

Albert · May 2016

Hi,

this part can be removed under functions/theme-head.php file but you must know that your site will stop working and some js's will not work as should. That's why we recommend to leave this code.

P.S. We guarantee that it's safe and it's not the reason of any hacks. For hacks usually plugins are responsible.

akiunlim · May 2016

what any suggestions for that? What could be disabled? because most of us have ever hacked on wp-login. we only install plugins that are suggested.

Albert · May 2016

You should contact with your admin to check the logs because there is nothing what we can do on our end as this is unbound to theme. We have lot's of attacks every day and did never been hacked since many years what means a lot depends of server as well.

akiunlim · May 2016

Thank you for your help...

Albert · May 2016

No problem

view-source

Comments