Support » Fixing WordPress » Illegal links injected into posts

  • I have three sites where every post has had links injected into the body of the post. All links take the format:

    Buy (drug name) online pharmacy no prescription needed

    I assume a bot of some description was used to inject these links. Is there a similar bot or plugin around that I can use to remove them all. I am talking about 2,000 posts all up that have these links – a nightmare to remove manually.

    Any advice would be greatly appreciated.

Viewing 7 replies - 1 through 7 (of 7 total)
  • Moderator Ipstenu (Mika Epstein)

    (@ipstenu)

    🏳️‍🌈 Halfelf Rogue & Plugin Review Team Rep

    You were hacked. It SOUNDS like the pharma hack…

    How to Diagnose and Remove the WordPress Pharma Hack

    Hi Ipstenu – unfortunately the attack on my site hasn”t inserted anything in the headers, the links have been randomly inserted into every post

    check my site – http://myradicalblogs.com – every post has a pharma link inserted

    Moderator Ipstenu (Mika Epstein)

    (@ipstenu)

    🏳️‍🌈 Halfelf Rogue & Plugin Review Team Rep

    http://codex.wordpress.org/FAQ_My_site_was_hacked

    If it’s in the POST itself you have two likely options:

    1) A plugin

    2) Someone has your admin password.

    So … y’know. Time to change passwords for EVERYTHING and run a scan from http://sitecheck.sucuri.net/scanner/ and see if you can pin down WHAT hack you have .

    @ipstenu With so many hacking going on, it would be nice if there would be a forum specially for the purpose of helping restore WP Web sites after a hack attack. But I’ll post than on another topic.

    As for the topic at hand: what @ipstenu said.

    @ipstenu With so many hacking going on, it would be nice if there would be a forum specially for the purpose of helping restore WP Web sites after a hack attack.

    +1

    Moderator Ipstenu (Mika Epstein)

    (@ipstenu)

    🏳️‍🌈 Halfelf Rogue & Plugin Review Team Rep

    Eeeeeeeeh. There’s ALWAYS hacking going on. I’d not want to see a mountain made out of a mole hill. It’s really not that much when you compare it to other things. More people have problems when they change the URL of their blog than hackings 😉

    I seem to have the same exact problem with a 3.2.1 install. The above-mentioned scanner didn’t show any ‘infections’. Neither can I find any special files…

    Did you solve this problem?
    If so would you mind sharing the solution?

    Thanks in advance,
    Peter.

Viewing 7 replies - 1 through 7 (of 7 total)
  • The topic ‘Illegal links injected into posts’ is closed to new replies.