Support » Fixing WordPress » Spam Link Injection (not by theme hack)

  • jcalvert@eastbaynewspapers.com

    (@jcalverteastbaynewspaperscom)


    I have a spam link being injected into a wordpress site that I maintain. Its an iframe wrapped in a hidden div that get inserted between the main content and footer. It gets added to every page.

    I’ve gone through all my theme files and php files and can’t find anything that looks suspect. Also searched for eval(base64_decode and everything came back clean.

    I’ve also switched themes. Its still there. Deactivated all plugins. Still there.

    Weird thing is is that if you look at the source of the page, its not in the code. But if you use Safari/Chrome developer tools to inspect the page, its there. Its a link that displays fashion-feed.net.

    Anyone else experience this or know how to fix it?

    Link to screenshot from Safari developer tools window

Viewing 2 replies - 1 through 2 (of 2 total)
  • Moderator James Huff

    (@macmanx)

    Volunteer Moderator

    Remain calm and carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures.

    Could be in your database. Give that a search for that domain name and see if anything comes up.

    Also check index.php files and wp-config.php

    You could also try replacing your wordpress core files with fresh copies if you’re still struggling with it.

    Just post here if you can’t track it down I’ll see if I can think of anything else to help 😀

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Spam Link Injection (not by theme hack)’ is closed to new replies.