Malware?

  • vilarhiago

    (@vilarhiago)


    9 years, 1 month ago

    Hi!

    Recently my web page have been rendered a suspicious url link (todaydates22.com) over all images in my sites.

    Here’s the renderized code:

    <script type='text/javascript'>
    /* <![CDATA[ */
    var kkkk = {"link_a":"http:\/\/todaydates22.com\/?u=dt58eky&o=v7q8fxw&t=","link":"http:\/\/todaydates22.com\/?u=dt58eky&o=v7q8fxw&t=","change_link_order":"on"};
    /* ]]> */
    </script>
    <script type='text/javascript' src='http://s.gravatar.com/js/gprofiles.js?ver=2017Apraa'></script>
    <script type='text/javascript'>
    /* <![CDATA[ */
    var WPGroHo = {"my_hash":""};
    /* ]]> */
    </script>

    I already did a malware verification but nothing found.

    Did anyone experienced this issue yet?

    regards

Viewing 3 replies - 1 through 3 (of 3 total)
  • Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    9 years, 1 month ago

    This may be a plugin or theme thing. Please attempt to disable all plugins, and use one of the default (Twenty*) themes. If the problem goes away, enable them one by one to identify the source of your troubles.

    If it does not go away, then…

    Take a deep breath and carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures.

    If you’re unable to clean your site(s) successfully, there are reputable organizations that can clean your sites for you. Sucuri and Wordfence are a couple.

    frescova

    (@frescova)

    8 years, 11 months ago

    I’m seeing the exact same issue; Although the link on my images is different. Did you find out where the code is coming from?

    frescova

    (@frescova)

    8 years, 11 months ago

    There was a plugin called wp-words-link-exchange in my plugins directory; Once I disabled it the suspect code went away. I’ve deleted the plugin and I’m disabling any “auto” installs on my site…

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Malware?’ is closed to new replies.

Tags