I have a WordPress website www.naturesrenewable.com which is located in a sub-directory of another website on a godaddy ultimate hosting plan. The WordPress website is using a Twenty Twelve Child theme that was created for the website. The website has had some code injected into it and we're unable to figure out where it's coming from. The code is showing up under the description for our website when you do a Google search result and it's full of erectile dysfunction key words and links. If you view the source on www.naturesrenewable.com home page, you can see a div layer that is being injected just below the body tag. It's in a div layer with a class ID contentread2. I've downloaded every single file from the main website and the sub-direcotry for the WordPress website, including the .htaccess file and the database and I can't find any reference to the div layer contentread2, or any of the erectile dysfunction key words. I am at a total loss as to where the code is coming from or how it's being injected. I've installed the All In One SEO Pack Plugin in an attempt to insert a proper meta description that might override Google from using the injected div layer to generate the description for their search results.
I'd like someone to figure out where this injected div layer and key words are coming from, remove it and then maybe harden the website to protect it from future vulnerabilities like this. Once I award you the job I can get you FTP and WordPress admin logins. I appreciate your help.