6 {{ upvoteCount | shortNum }}
6 {{ upvoteCount | shortNum }}

Site Redirects to a different URL which is not mine

by itsnaveenreddy
5 replies
Hello guys,

Today I realised that all my sites when clicked from Google search results are being redirected to this weird url: http://www6.uiopqw.jkub.com/

The sites are currently hosted on Bluehost and all the sites are on Wordpress.. I googled to find out more information, unfortunatley I couldn't find any help.

The sites work fine when I type the url, but the problem is only when someone navigates to the site from Google results.

Looking forward for some help to resolve this issue. Thanks in advance.
#mine #redirects #site #url
  • Profile picture of the author Devone
    did you checked the redirect from your Domain Registrar?!

    Maybe there is the Problem but you right that is very weird i never hear this problem before
    {{ DiscussionBoard.errors[6721049].message }}
    • Profile picture of the author itsnaveenreddy
      Originally Posted by Devone View Post

      did you checked the redirect from your Domain Registrar?!

      Maybe there is the Problem but you right that is very weird i never hear this problem before
      Yes.. I did and it seems the worpress files are injected with malicious script
      Signature
      >>>Niche site for sale with 560$ adsense earnings since April, 2012. Contact me to grab this earning site<<<
      {{ DiscussionBoard.errors[6721084].message }}
      • Profile picture of the author Devone
        ok sound not good,

        I have read last days a Article about this.

        However if you have a old backup check your files with "winmegre" or tool like this.

        You can check with this tools whats different in the files maybe this help you?!
        {{ DiscussionBoard.errors[6721164].message }}
      • Profile picture of the author JustinTurpin
        Originally Posted by itsnaveenreddy View Post

        Yes.. I did and it seems the worpress files are injected with malicious script
        Do you see anything regarding base64_decode or IFRAME in the injection?
        You can likely just remove the injected code and your site will work fine.
        This won't prevent further injection attacks though.
        {{ DiscussionBoard.errors[6721968].message }}
  • Profile picture of the author Adam Struve
    Just removing the injected code is only a temp fix. Make sure your Wordpress installations are up to date as well as any plugins you use. If you happen to be using a pirated version of a premium theme or got your theme from any sort of shady place it might have came with an exploit already part of it.

    If the problem still happens then start disabling plugins and changing themes until it stops to narrow down what is causing it.
    {{ DiscussionBoard.errors[6721995].message }}

Trending Topics