13 {{ upvoteCount | shortNum }}
13 {{ upvoteCount | shortNum }}

My webpage redirecting to other website for some visitors... Help Please

by Mike Hill
11 replies
Hey guys,

I'm having a huge problem with a webpage of mine. When I go there I am taken to the proper destination. But when others go to that same page they are redirected to Adult Friend Finder.

At first I thought it was on their end but I have had several people contact me about it so unless EVERYONE visits Adult Friend finder I think I have a malicious redirect somewhere on my page but I cannot find it.

Web Page in question: Affiliate Progressive Jackpot

If someone could help me with this I would be forever grateful...

-Mike Hill
#redirecting #visitors #webpage #website
  • Profile picture of the author brentb
    This is who hacked you I guess: infernox dot com

    What kind of site is it? Wordpress? Other CMS? Something you coded yourself?
    {{ DiscussionBoard.errors[9144317].message }}
    • Profile picture of the author brentb
      Did a little digging...

      You can email him here: webmaster at Infernox dot com

      {{ DiscussionBoard.errors[9144321].message }}
  • Profile picture of the author jeffatrackaid
    Look at your file or index.php if this is a CMS.

    This type of attack is often done by injecting code into these files. You will see code that looks like gibberish. This is obfuscated PHP code. Often the code traps referrer URLs or other data so that site owners or people visiting directly do not get redirected.

    If you don't find code injections in these files, look for Javascript includes on the pages.

    Also, check your .htaccess file to see if there are any suspect rewrite rules in there.
    {{ DiscussionBoard.errors[9145791].message }}
    • Profile picture of the author mirza786
      For me it's redirecting to capitaloption.com
      {{ DiscussionBoard.errors[9146509].message }}
    • Profile picture of the author Metacomet
      Originally Posted by jeffatrackaid View Post


      ...

      This type of attack is often done by injecting code into these files.

      ...
      If OP has a WP site I would have been freaked if this was the answer, glad it was just his host.

      I have never heard of a WP site having anything injected like that before.
      {{ DiscussionBoard.errors[9163344].message }}
  • Profile picture of the author Valdor Kiebach
    Went to the correct page for me using Android browser

    UPDATE:
    14 hours later I still get the correct site on laptop with firefox browser.
    {{ DiscussionBoard.errors[9147140].message }}
  • Profile picture of the author jasonracer
    I tested on my desktop (chrome) and android phone, there is no redirection...
    maybe it's geo-targeted...
    {{ DiscussionBoard.errors[9148769].message }}
  • Profile picture of the author Mike Hill
    Hey guys it was my webhost provider that was compromised. They have since moved me to another server but what's more troubling is they knew about it but never contacted anyone on that server.

    This has prompted me to change webhosts next week. What BS
    {{ DiscussionBoard.errors[9150726].message }}
    • Profile picture of the author RobinInTexas
      Originally Posted by Mike Hill View Post

      Hey guys it was my webhost provider that was compromised. They have since moved me to another server but what's more troubling is they knew about it but never contacted anyone on that server.

      This has prompted me to change webhosts next week. What BS
      Without knowing exactly what the exploit was, it's difficult to lay the blame, the hackers could have exploited a vulnerability on your site to get to the server. You need to scan everything, preferably using more than one tool.
      Signature

      Robin



      ...Even if you're on the right track, you'll get run over if you just set there.
      {{ DiscussionBoard.errors[9154904].message }}
  • Profile picture of the author 2WDHost
    Hi Mike.

    Do you have any details on the issue from your webhost now?

    Despite of the transfer to the new server or to the new webhost I would strongly recommend to:
    1. Change all the passwords: database, account, e-mail, etc.
    2. Scan the files for malicious code.
    3. Upgrade your scripts to the latest stable versions.
    {{ DiscussionBoard.errors[9154299].message }}
  • Profile picture of the author anandroshan
    you should check your .htaccess file. May be the redirection code will be there.
    {{ DiscussionBoard.errors[9164181].message }}

Trending Topics