Question re: spammy internal links on site

hdeg

Hi all,

I have a blog (managed via WordPress) that seems to have built spammy internal links that were not created by us on our end. See "site:blog.execu-search.com" in Google search results.

It seems to be a pharma-hack that's creating spammy links on our blog to random offers re: viagra, paxil, xenical, etc.  When viewing "Security Issues", GSC doesn't state that the site has been infected and it seems like the site is in good health according to Google.

Will anyone be able to provide any insight on the best necessary steps to take to remove these links and to run a check on my blog to see if it is in fact infected?  Should all spammy internal links by disavowed?

Here are a couple of my findings:

• When looking at "internal links" in GSC, I see a few mentions of these spammy links.
• When running a site crawl in Moz, I don't see any mention of these spammy links.
• The spammy links are leading to a 404 page.  However, it appears some of the cached version in Google are still displaying the page.

Please lmk.  Any insight would be much appreciated.  Thanks all!

Best,
Sung

Roman-Delcarmen

Firts your need to delete/remove those links

To delete those links from search engines
Go to your Search Console > Google Index > Remove URLs

The main reason for that, is probably your site has been hacked and it is used as zombie website. Im pretty sure that problem is the theme or some nulled plugin this kind of problem is very usual when some get a theme of a untrusted website. So make a backup of your site, then delete everything, add a fresh version of your theme and plugins.

Once your site is clean follow these tips

To secure your website
https://wordpress.org/plugins/all-in-one-wp-security-and-firewall/

Another security tips
https://yoast.com/wordpress-security/