I think I just discovered why my adsense earnings have dropped (I hope this is the cause) Read this: http://blog.kakkoi.net/wordpress/ho...n-infected-by-mike-jagger-goro-class-mailphp/ Just found on one of my blogs and it is littered with porn links. "Here’s how you can removed the offending goro spamware injection before google banned you from internet pipe."
I'm relieved that I think this may be the cause of my recent drop in earnings...as this Wordpress spyware thing got in my blogs on the same day as I noticed a drop in earnings. I just hope I don't get banned from The Google because of it. Note to self: Always keep your WP up to date!
Thanks for the update, its an important issue. but how do I know if my website is infected? I have not played with any classmail.php or that kinda stuff lately. how do we check?
First red flag should be if you don't have the latest version of wordpress installed... but even if so doesn't mean you are infected, of course.. From what I understand if you see the class-mail.php file in your wp-includes folder you are probably infected. Another way to check is go to one of your blog posts (single post page) and view the source code. Scroll to the bottom and if you are infected you will see a zillion spammy/porn links. Why is this critical? #1 you will get blacklisted by google adsense and won't earn moola from your entire blog. #2 you might get blacklisted by the search engine itself. I can only pray that this isn't a permanent blacklist. I've spent many many many hours, weeks and months blogging and its a shame to go to waste due to some ahole spammer
Thank you for info, just checked all blogs, thanks god they all are clear. Would be great if google develops a technology that does not ban us but ban those spammers...
Glad you didn't have it... keep an eye on that wp-includes folder. I swear... if I knew who did this and where they lived... I would DEFINITELY buy a brand new crowbar and beat them until they were dead. Ok, maybe I'd be nice and beat them until they couldn't walk, talk, see or hear again.
If you have adsense on your blog you can suffer big losses if you don't keep an eye on things. Here's how mine were affected: 1 - got the wordpress.net.in virus on several of my blogs 2 - it injects spammy porn links on EACH of your blog posts 3 - Google sees it and blocks advertising on your blog 4 - It will stay that way till you fix it... and may even take longer. It has been a day now and some of my blogs are still affected even though the spam links are gone. I'll say it again.. anyone using an outdated wordpress blog, check for the virus!
I've written a couple of entries about this problem. You can find them at http://gordon.dewis.ca/category/wordpress/ Hope this helps!
Awesome! Do you have any idea how this virus works? I'm still trying to figure out how I got infected
Not really. When I looked through the logs, I could see the request that must have done the initial installation of the problem. Presumably, it took advantage of some weakness in the PHP code. I had recently upgraded to 2.3.1 and then a couple of days later 2.3.2 was released. I'm not sure whether I brought the weakness in with the new version of if it was in something I'd carried forward from the older installation.
I found those just after setting up new blog. At my control panel i saw comments awaiting for moderation. I thought i have not told about my blog yet but who came and send comments? Then i found it was porn link spam..ohh..
That sounds like comment spam. The wordpress.net.in hack is MUCH worse. It will put a TON of spam links in each of your blog posts. Why is this bad? #1 - If the spam links are offensive to google adsense, ads will quit showing on your blog #2 - It is possible your google rankings could go down as it may appear that you are trying to game the system. I just spotted this on Adam Curry's blog, here is a screenshot of what the spam links might look like: