I designed a wordpress site for a high school and although I have left working on it, the person that has taken over has come to me for advice from time to time. This website was my first and it ran for over a year with no problems.
However, recently my collegue discovered that strange meta tags being displayed when searching for the site on bing and now some pages are being blocked by the work security websense. Going into the ftp and viewing the pages we have discovered this code is being run.
This is in lots of the pages hidden. My collegue has deleted this code from most of the pages yesterday but has found that it has returned this morning. I also installed Better WP Security and OSE Firewall last week after the problems started. I set up the E-Mail alerts. Only last night between 22:30 last night and 09:00 this morning I have received 915 firewall alerts.
Example of the E-Mail below:
08:30 (47 minutes ago)
FROM IP: http://whois.domaintools.com/18.104.22.168
I have no idea if this is normal or something to be worried about. Really not sure where to go from here? Any advice/help would be greatly appreciated.