maners

That’s very difficult simabo. I have a feeling we are having different issues. If you could possibly take a screenshot I could maybe help. (press your “Print Screen” or “PrntScrn” key while your issue is on your screen, and go into paint and paste it, then save it. Then go and upload it to https://tinypic.com/ and give me the link to the image).

Sorry for double post. It appears the issue is with WordPress SEO by YOAST. Turn it off the additional glitch toolbar disappears and I can make links. Turn it on and it recreates the problem. Now for a fix…

simabo, so you also have the issue with the HTML editing toolbar showing over the visual editor? I am trying to figure out if my issues are related or not. Please post your list of plugins as well to see if we have one in common that may be misbehaving, too!

EDIT: for more info, it does all the symptoms in post 1 in both IE and Chrome.

@mickeyroush

I just checked my uploads. Nothing unusual as far as I can tell.

(Sorry for double post)

After replacing the files that https://sitecheck.sucuri.net/scanner/ claimed were infected with fresh ones, I seem to be okay. My functions.php doens’t seem to have the code from pastebin hellowoo kindly posted.

Update: it seems that this method DID NOT clear the issue. My browser (Chrome) still claims that newportalse. com has content on my site. This occurs despite Sucuri claiming my site is clean. It only makes this claim in the backend, about once every ten loads, never in a pattern. That’s the part that really confuses me – what could possibly be loading only every so often?

Just another update with me (in case someone in the future reads this thread), because the only time I every encounter an alert from Chrome while in the backend, and Sucuri claims my site is clean, I assumed that the issue is backend only (thus Sucuri can’t access it and the users are safe). My next idea was to use WordPress’s built in reinstall feature. It seems to have worked. I will update this thread if I encounter the message again. Again, I only got it about 1 out of every 10 reloads, so it’ll take time to figure out if my install is really clean or not.

After replacing the files that https://sitecheck.sucuri.net/scanner/ claimed were infected with fresh ones, I seem to be okay. My functions.php doens’t seem to have the code from pastebin hellowoo kindly posted.

Update: it seems that this method DID NOT clear the issue. My browser (Chrome) still claims that newportalse. com has content on my site. This occurs despite Sucuri claiming my site is clean. It only makes this claim in the backend, about once every ten loads, never in a pattern. That’s the part that really confuses me – what could possibly be loading only every so often?

After replacing the files that https://sitecheck.sucuri.net/scanner/ claimed were infected with fresh ones, I seem to be okay. My functions.php doens’t seem to have the code from pastebin hellowoo kindly posted.

I have a similar problem. Same domain and attack – there’s two infected javascript files on my site. Here’s the scan:

`
eb site: dotgamerclan.com
status: Site infected with malware
web trust: Not Blacklisted

Malware found on javascript file:
https://www.dotgamerclan.com/announcementsblog/wp-includes/js/l10n.js?ver=20101110

[Code moderated as per the Forum Rules. Please use the pastebin]

I don’t know how to “clean” the files. I think I fixed the timthumb hole, though, using the fix on https://blog.vaultpress.com/2011/08/02/vulnerability-found-in-timthumb/. I am also using Host monster. Can anyone help me clean these files?

I am very new to coding and just barely understand what you guys are saying. It would help me soo much if you could lead me through it just a little bit better.

-My blog: https://www.dotgamerclan.com/
-Current Theme: BuddyPress Default 1.2.3
-Unique theme wanted on: https://www.dotgamerclan.com/announcementsblog/travian-forum/
-Wanted theme: I’m actually not sure. I would like a minimal theme that has no sidebars and no navbars, as well as a small or nonexistant header. If you have a suggestion please tell me it.

Really sorry about this, but I could really use the help… I’ll only do this once, I promise… /bump

Really sorry about this, but I could really use the help… I’ll only do this once, I promise… /bump