WP Site Only Shows Javascript for Main Page

If you’ve disabled all plugins and switched back to the default Twenty Ten (or Twenty Eleven) theme and are still seeing this, then you’ve got a serious problem.

First of all, the JavaScript is horribly obfuscated. Second of all, with no plugins and a default theme, you should see the default layout of WordPress.

From the looks of things, someone has probably hacked your site.

I recommend you:

Update

I did some reverse-engineering on that JavaScript you linked to, and you have been hacked. It’s a compression script that uncompresses itself and calls window.eval() to execute its package.

The code adds a hidden iframe that loads content from a bad domain into your site. I’m not going to post the full details of the hack here, but it’s pretty bad.

In addition to reinstalling WordPress, I also highly recommend you change all of your server passwords:

  • FTP
  • SSH
  • MySql

You might also want to work with a company like Sucuri – they specialize in malware protection and removal.

Related Posts:

  1. How to disable the fatal error (WSOD) protection?
  2. Could not create directory /wp-content/upgrade/
  3. Getting the warning: Missing argument 2 for manage_posts_custom_column()?
  4. What log files does a WordPress installation write to?
  5. HTTPS leads to Sorry, you are not allowed to access this page
  6. How to use WP_Error $data argument?
  7. Is it possible to disable caching of an option when using w3 total cache?
  8. Showing error “Function create_function() is deprecated”
  9. error_log over 70GB. How to stop this? [closed]
  10. Update wordpress fail – There has been a critical error on your website
  11. Getting headers already sent error from plugin
  12. “Notice: Undefined index:” error when adding new content?
  13. Object of class WP_Error could not be converted to string
  14. New WordPress Error Message – Not seen this before
  15. How to handle core code throwing notice on valid input?
  16. Getting Warnings & Notices from Fresh WordPress 3.1.2 install
  17. What do these “Failed to import” errors mean and how do I fix it?
  18. Trying to get property of non-object in wp-includes/capabilities.php
  19. How to use add_settings_error in register_setting callback
  20. Application passwords not working on localhost?
  21. File available but giving 404 in wordpress
  22. PHP notice coming from the WordPress core?
  23. Only on 404 page, get notice: trying to get property of non-object on nonce
  24. In big trouble – Allowed memory size of 268435456 bytes exhausted
  25. PHP Warning : A non-numeric value encountered
  26. Wordpres debug.log PHP Notice: is_singular was called
  27. media_buttons_context is deprecated
  28. Warning: Declaration of QuietSkin::feedback error
  29. PHP Fatal error: Call to a member function get() on null in /wp-includes/cache.php on line 123
  30. failed to open stream: No such file or directory
  31. Getting 403 Access Denied Error Message in new WordPress Post
  32. update user information
  33. Any way to check the integrity of a WordPress site?
  34. My wordpress site loads perfectly, but I cannot access the menus in the admin panel
  35. Call to undefined function wp_embed_register_handler()
  36. Site works fine, but editing page causes error “Call to undefined function _wp_array_get()” in Gutenberg
  37. Odd error on top of my dashboard. How do I fix it?
  38. Error! 401.shtml file not found, what’s the problem?
  39. Error wordpress “Call to undefined function aq_resize()” [closed]
  40. Strange glyphs code error
  41. Custom slider throwing an error
  42. err_connection_closed after 20 minutes when loggedin in backend
  43. How to Fix “Are You Sure You Want to Do This”, while uploading my theme?
  44. 4.2.2 stuck in an db upgrade loop with “Call to undefined method wpdb::get_col_length()”
  45. Cannot redeclare maybe_create_table()
  46. Warning: An unexpected error occurred. Something may be wrong with WordPress.org
  47. Two Domain pointing to the same WordPress installation
  48. “Cannot modify header information” means I can’t use wp_redirect
  49. Front end empty (i.e. nothing displays); Back end looks fine; What are possible causes?
  50. How can I use wordpress functionality outside of WP framework
  51. Errors in Add Image Popup, Media Library Tab: “in_array() expects parameter 2 to be array, null given in wp-includes/query.php”
  52. hypanis.ru wordpress vulnerabilty [closed]
  53. Child Theme Fatal Error [closed]
  54. Jetpack could not contact wordpress [closed]
  55. White Screen on Site but wp-admin OK
  56. Dummy data error
  57. Internet Explorer cannot display the webpage
  58. W3 Total Cache “Preview mode could not be disabled” [closed]
  59. Internal Server Error only on frontend and certain admin pages
  60. How to automatically convert “%” and “+” in image urls on upload
  61. Resolving a 500 Error with GoDaddy Hosting? [closed]
  62. Failed to import “File name”: Invalid post type jetpack-portfolio
  63. Error call_user_func_array() After Installing Plugin
  64. Error 500 when installing WordPress
  65. Unable to edit with Elementor
  66. Warning: call_user_func_array()
  67. “File not found.” appears often while navigating wp-admin
  68. WordPress Error blank page In section website
  69. Posts, pages and some images are deleted sometimes
  70. Call to undefined function wordpress listing_categories
  71. how do i fix these errors my debug log gave me?
  72. Fatal error: Call to undefined function wp_add_privacy_policy_content() in /wp-admin/includes/misc.php on line 1822
  73. The TypeError: this.each when wp.media.open() after using popper.js for bootstrap 4
  74. Unable to customize themes in wordpress after migrating to https from http
  75. A SINGLE Post Giving an “Under Maintenance” Message
  76. Can too-large images cause Error Establishing a Database Connection
  77. Weird Cron Error
  78. Error messages generated in ‘Customize Your Site’
  79. Overcome illegal characters [duplicate]
  80. How to find which plugin crashes
  81. bypassing permission error for a plugin’s page
  82. Website Loading Very Slow, Each Time Different File Takes Very Long To Load
  83. Fatal error: Allowed memory size of bytes exhausted (tried to allocate 36 bytes)
  84. Logging out gives 404 error
  85. Any idea on how to fix this error when forcing SSL on a certain page?
  86. White background, black text – the simplest on earth : “error”!
  87. Twenty Eleven theme-options error
  88. warnings & errors after MAMP to live (hosteurope)
  89. Random HTTP 500 error in WordPress
  90. I’m getting Call to undefined function wp_parse_list() out of the blue
  91. Add clickable function in functions.php – parse error [closed]
  92. Trying to add function with pre_get_posts for plugin search [closed]
  93. undefined index [closed]
  94. Language of errors in WordPress admin
  95. WordPress is not sending the 2nd email in the same request
  96. Getting 403 Forbidden Error while trying to edit or delete new posts or existing posts
  97. Creating a function inside a custom WordPress Plugin [closed]
  98. Apache error log lots of connection_refused
  99. Lots of warnings and errors instead of my WordPress site – Synology NAS – Intranet
  100. Critical error after updating my wordpress