eljaysheffield

Thanks mate for your in-depth analysis.
I installed Securi so that at least starts to tell me if any files ave been modified etc. I have changed the password on the database, installed new core WP files and rescanned and all is fine so far.

The main thing is that I have changed the database password on a currently clean site so I will see if it comes back.

There are only three users – two regulars including myself and one that doesn’t actually do anything so at least there are few of us to deal with.
Thanks a lot for your advice.
All the best.

Thanks Jeremy,
It is a tricky one because the site was taken over from someone long gone who custom built it out of Bootstrap so it hasn’t got a premium theme, just a custom built one. I have tried the usual plugin conflict by turning on and off but don’t want to risk changing the theme because this site seems to get regular glitches and it might destroy it. i am wondering if there is some outdated javascript library that I need to relink. For now i have removed the bit from the front page and this was tricky – it was in several places in the PhP files but there is no widget area in the WP Dashboard so it looks like it was just scripted into the PhP. I will keep trying.
Thanks,
Lee

Thanks but no this doesn’t work. Anyone outside of our institution network can’t login with the normal in-build password protection – it just doesn’t allow them. our IT section have put a block on anyone outside the network from logging into to WordPress so I need something more robust and external.