Thank you for those resources. I scanned my active theme directory for eval(... expressions and found three more.
Now I installed a security plugin to check everything and to get instantly alerted in the future if something like that should happen again.
Still, I don’t know where it came from… I suspect it might have been a plugin, but I have no idea which one (I’m using 22 right now). Anyway, I’m thinking about a complete re-design, which I could use as a chance to take a completely fresh installation.
Cheers,
Cedric
Ok, I just found some unwanted code in a couple of php files: eval(decode(...)) (but a huge cryptic string instead of …), which would probably produce some iframe on my page with dishonest intentions.
I hope I could remove all of them.
