Comments on: I was hit by a zoooommmmbie…. http://www.janefancher.com/TheCaptainAndLime/2010/01/06/i-was-hit-by-a-zoooommmmbie/ SF/F author Jane Fancher's Blog: A Little Sweet, A Little Spice, and A Little Tart. Wed, 08 Feb 2012 05:18:21 +0000 hourly 1 http://wordpress.org/?v= By: Jane http://www.janefancher.com/TheCaptainAndLime/2010/01/06/i-was-hit-by-a-zoooommmmbie/comment-page-1/#comment-2074 Jane Wed, 06 Jan 2010 22:48:12 +0000 http://www.janefancher.com/TheCaptainAndLime/?p=1751#comment-2074 Thanks! I just realized the problem was back and went into the header file a bit more carefully. There was some more code I hadn't seen. Don't know if this will solve it, but at least it was one more step. The rest of the code, at least in this file, appears to be legit. Who knows what else is hidden in other files. Grrrr.... I'll for certain go check the search you suggest. Gad, this is annoying. Thanks! I just realized the problem was back and went into the header file a bit more carefully. There was some more code I hadn’t seen. Don’t know if this will solve it, but at least it was one more step. The rest of the code, at least in this file, appears to be legit. Who knows what else is hidden in other files. Grrrr…. I’ll for certain go check the search you suggest.

Gad, this is annoying.

]]> By: mitha http://www.janefancher.com/TheCaptainAndLime/2010/01/06/i-was-hit-by-a-zoooommmmbie/comment-page-1/#comment-2071 mitha Wed, 06 Jan 2010 21:16:55 +0000 http://www.janefancher.com/TheCaptainAndLime/?p=1751#comment-2071 Yikes! So glad you were able to find and fix things! And so very sorry to hear about your friend. (hugs) to you, CJ, and OSG. Yikes! So glad you were able to find and fix things!

And so very sorry to hear about your friend. (hugs) to you, CJ, and OSG.

]]> By: Knnn Envoy http://www.janefancher.com/TheCaptainAndLime/2010/01/06/i-was-hit-by-a-zoooommmmbie/comment-page-1/#comment-2068 Knnn Envoy Wed, 06 Jan 2010 18:23:01 +0000 http://www.janefancher.com/TheCaptainAndLime/?p=1751#comment-2068 Just FYI: I took a look at the page source (right-click -> View Source) for a couple of pages on this blog, and I still see the array (look for "s = Array" in the page source to locate this stuff) and the injected links in a fresh view of the page source. You may want to have another look at your admin password, admin cookie, and have a look at the security and permissions on your nested folders. See if you have any unintended sharing vulnerabilities. Also, I'd suggest a search for "wordpress hidden links injection" for some interesting approaches that people have taken to eliminating the problem. Apparently, there are ways to clear the issue out entirely and permanently patch the holes made when the hack occurred. Good Luck!! Just FYI: I took a look at the page source (right-click -> View Source) for a couple of pages on this blog, and I still see the array (look for “s = Array” in the page source to locate this stuff) and the injected links in a fresh view of the page source. You may want to have another look at your admin password, admin cookie, and have a look at the security and permissions on your nested folders. See if you have any unintended sharing vulnerabilities. Also, I’d suggest a search for “wordpress hidden links injection” for some interesting approaches that people have taken to eliminating the problem. Apparently, there are ways to clear the issue out entirely and permanently patch the holes made when the hack occurred. Good Luck!!

]]>