Forums

WordPress › Support » How-To and Troubleshooting

Illegal links injected into posts (8 posts)

  1. lessca
    Member
    Posted 1 year ago #

    I have three sites where every post has had links injected into the body of the post. All links take the format:

    Buy (drug name) online pharmacy no prescription needed

    I assume a bot of some description was used to inject these links. Is there a similar bot or plugin around that I can use to remove them all. I am talking about 2,000 posts all up that have these links - a nightmare to remove manually.

    Any advice would be greatly appreciated.

  2. Ipstenu (Mika Epstein)
    Half-Elf Support Rogue & Mod
    Posted 1 year ago #

    You were hacked. It SOUNDS like the pharma hack...

    http://www.pearsonified.com/2010/04/wordpress-pharma-hack.php

  3. lessca
    Member
    Posted 1 year ago #

    Hi Ipstenu - unfortunately the attack on my site hasn''t inserted anything in the headers, the links have been randomly inserted into every post

    check my site - http://myradicalblogs.com - every post has a pharma link inserted

  4. Ipstenu (Mika Epstein)
    Half-Elf Support Rogue & Mod
    Posted 1 year ago #

    http://codex.wordpress.org/FAQ_My_site_was_hacked

    If it's in the POST itself you have two likely options:

    1) A plugin

    2) Someone has your admin password.

    So ... y'know. Time to change passwords for EVERYTHING and run a scan from http://sitecheck.sucuri.net/scanner/ and see if you can pin down WHAT hack you have .

  5. Jorge
    Member
    Posted 1 year ago #

    @Ipstenu With so many hacking going on, it would be nice if there would be a forum specially for the purpose of helping restore WP Web sites after a hack attack. But I'll post than on another topic.

    As for the topic at hand: what @Ipstenu said.

  6. MickeyRoush
    Member
    Posted 1 year ago #

    @Ipstenu With so many hacking going on, it would be nice if there would be a forum specially for the purpose of helping restore WP Web sites after a hack attack.

    +1

  7. Ipstenu (Mika Epstein)
    Half-Elf Support Rogue & Mod
    Posted 1 year ago #

    Eeeeeeeeh. There's ALWAYS hacking going on. I'd not want to see a mountain made out of a mole hill. It's really not that much when you compare it to other things. More people have problems when they change the URL of their blog than hackings ;)

  8. psuy
    Member
    Posted 1 year ago #

    I seem to have the same exact problem with a 3.2.1 install. The above-mentioned scanner didn't show any 'infections'. Neither can I find any special files...

    Did you solve this problem?
    If so would you mind sharing the solution?

    Thanks in advance,
    Peter.

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags