Hey all! I have been facing this problem since last one week, some one has injected adf.ly bot in my website and now whenever I click on any of my website's link, than it opens adf.ly page instead of website's link. I have updated, and re-installed the whole site but it happened again. My sites URL is yesiknowthat.com, any idea? any solution? Regards
I found this JS code before the </html> tag: <script> var adfly_id = [B]95535[/B]; var adfly_advert = 'int'; var exclude_domains = ['example.com', 'yoursite.com',]; </script> <script src="http://adf.ly/js/link-converter.js"></script> Code (markup): If you remove it (theme file footer.php) the problem should be solved. I also suggest you to contact adf.ly and ask them to ban this ID.
Yes report that member and ask adfly to reply to you, because this hacker is not new: http://wordpress.org/support/topic/wordpress-url-problem-2
I would guess that you have installed a plugin that is buggy as hell so it allows hackers to compromise your site. I recommend you removing all plugins with bad reputation or those that were updated years ago. Also reupload your default WP files to make sure that the hacker won't have there any backdoor that he might have left behind.
Well, I have checked that, but I guess he breaks through my cpanel and than change the password of wp-admin.