- Author had a File in an Envato Bundle
- Microlancer Beta Tester
- Author was Featured
- Has been a member for 3-4 years
- Referred between 1 and 9 users
- Bought between 1 and 9 items
- Sold between 10 000 and 50 000 dollars
- Exclusive Author
- Romania
butterflymedia
says
There is a WordPress worm that adds malicious (more or less) code to all functions.php files on the server (either online or offline/local). Here’s my StackExchange question, still working on finding an automated way of removing it.
http://wordpress.stackexchange.com/questions/74367/how-to-remove-the-automated-code-posted-in-functions-php
- Author had a File in an Envato Bundle
- Microlancer Beta Tester
- Author was Featured
- Has been a member for 3-4 years
- Referred between 1 and 9 users
- Bought between 1 and 9 items
- Sold between 10 000 and 50 000 dollars
- Exclusive Author
- Romania
butterflymedia
says
UPDATE AND SOLUTION :
Clean all the malicious code (see my PasteBin link above) from all functions.php files (best to check globally using a text editor like Notepad++) and you’re done. Check all downloaded themes for the code in functions.php file. There are more themes infected with this code online.
