My Website Has Been Hijacked By Medic Shops Dot Net?

19 replies
  • SEO
  • |
Sovereign Lords and Ladies:

This problem relates to SEO since I am talking about getting results from a search engine so I felt the post was fitting for this section of the forum.

I typed in three words into Google and my website comes up on the very top of the page. But when I click it on, it redirects to a Canadian pharmacy. Is Google doing underhanded things like this for higher paying customers or has the Canadian pharmacy hijacked the URL to redirect to their site?

Your Servant, King Arthur
#canadian #hijacked #pharmacy #website
  • Profile picture of the author Mark Hoffman
    This has absolutely nothing to do with Google, sounds like someone put a 301 on your site so I would look into your hosting and see whats going on
    {{ DiscussionBoard.errors[5747108].message }}
    • Profile picture of the author KingArthur
      Originally Posted by Mark Hoffman View Post

      This has absolutely nothing to do with Google, sounds like someone put a 301 on your site so I would look into your hosting and see whats going on
      So you are saying my host such as Blue Host or Host Gator etc. (depending on what host I am using) could fix this for me?
      {{ DiscussionBoard.errors[5747136].message }}
      • Profile picture of the author KingArthur
        I put a question mark after the title of this thread since I do not want to accuse Medic Shops of doing this. But what other person would spend their valuable time doing this if they were not a part of the website or working for the website to increase their sales!!!

        Medic Shops Dot Net is the name of the website that is getting results from the redirection of the URL of my website.

        I looked the site over and it appears to be an internet based pharmacy selling viagra and cialis and levitra. That is why someone thought they were cute hijacking my web site and redirecting the search results to Medic Shops Dot Net. My web site has nothing to do with those drugs for sexual performance. But since many people want them the people behind those kind of sites can hijack most any site and get sales.

        I get SPAM in a lot of my email accounts with advertisements for those kind of drugs. So someone doing this to my site is similar to someone sending SPAM into another person's email account thinking they will get sales.

        Beware of the website Medic Shops. It looks professional by their use of the words CANADIAN PHARMACY in the upper left hand corner of their site but it is an internet based site selling the drugs I mentioned above.
        {{ DiscussionBoard.errors[5747437].message }}
  • Profile picture of the author TechSense
    Check your .htaccess file to see if there's any redirect code added by an unauthorized person.
    {{ DiscussionBoard.errors[5747440].message }}
  • Profile picture of the author stevenpayales
    Are you using a CMS for your website? If yes, update it to the latest version including the plugins.

    If your site is from scratch, then make sure you have a reliable hosting and also secure the pages of your site as well as the DB.
    If you have an urge to build something that could change the world, don’t focus on the money, but the legacy you’ll leave behind.
    Buy Back Telefoane - Get Dinodirect Coupon Codes and shop for LESS!@
    {{ DiscussionBoard.errors[5747487].message }}
  • Profile picture of the author alexmobile
    You should check it from totally different computer (ask your friends to check it for you). If from another computer it wold all work just fine, then the issue is that your browser or computer is infected with malware. If your friends will experience same thing as you, then the problem is your hosting or website got hacked and you should fix it at the hosting side. Good luck!
    Signature - login to websites by scanning QR code on your monitor! No Passwords!
    {{ DiscussionBoard.errors[5747555].message }}
  • Profile picture of the author MisterChopsticks
    I would contact your host.
    {{ DiscussionBoard.errors[5747561].message }}
  • Profile picture of the author outwest
    No hostga]tor didnt do anything, and no google didnt do anything
    your site has been hacked and a 301 redirect has been inserted into the .htaccess file

    immediately go to your root domain look for the file near the top .htaccess

    move a copy of that file to your local host your computer
    open it
    look inside
    see if there is a 301 redirect file inside that
    if there is, immediately delete that file
    upload the new .htaccess file

    then contact your host to ask how to insure this does not happen again
    Tech article writing .Native English Speaker(with Proof)
    specializing in SmartPhones , Internet security, high tech gadgets, search engines, tech shows, digital cameras.

    {{ DiscussionBoard.errors[5747592].message }}
    • Profile picture of the author mrgee
      You need to check the nameservers for this domain.. You can do a whois search to see what the nameservers are.. Google whois. Or check with your domain registrar.. ie.e the place where you bought/register the domain..

      A natural alternative
      Cure Piles Naturally

      {{ DiscussionBoard.errors[5747717].message }}
      • Profile picture of the author KingArthur

        Support said:

        Thank you for contacting support. I'm sorry to hear of the trouble you're having. Your website seems to have been hacked. Because this is all 3rd party code, we cannot go through the account & secure it as we do not know what should & should not be on the account. However we do have a new service we are affiliated with 'sitelock'. This can be found in your CPANEL. It will scan your sites and then give you a REPORT of what is insecure. You then give that to your developer. And they can help resolve this for you.

        Also, there is who help with hacked sites. Database-driven sites are vulnerable to hackers, who can (and do) exploit bugs in those programs to gain unauthorized access to your site. The following are some things you can do to help secure your site. Set register_globals to OFF 1. Turn off Display Error/Warning Messages. Set error_display to ZERO 2. Never run unescaped queries 3. Validate all user inputs. Items on Forms, in URLs and so on 4. Move config.php and files containing Passwords to MySQL to a secure directory outside of the public_html folder 5. Change permissions on any configuration files containing private information such as database passwords or email accounts to 440 so they cannot be written to and so there is no world permissions. If you need to edit them at a later time you will need to change it back to 640 6. Access Control: You don't want the user to have access to any Admin function or Clean up scripts 7. The .htaccess file is your friend. Use it to deny access to your site or files. (We also have an easy IP Deny Manager tool in the cpanel) 8. PHP can parse any valid script, whether it is called foo.php, very_long_name.php.php.php, or even deleteme.bat Using the default extension of ".php" means that before your hackers start you have already told them you are using PHP As mentioned, you can use any filename for your scripts - if you are using PHP for every script on your server, consider using the ".html" extension for your scripts and making PHP parse HTML files You can change your file extension by adding this line to the .htaccess or turn it on via the Apache Handlers in the cPanel (AddHandler application/x-httpd-php5 .html) To protect against SQL injection attacks Sometimes hackers will try to screw up your database by inserting SQL code into your form input fields. They can for example, insert code that could delete all the data in your database! To protect against this, you need to use this PHP function: mysql_real_escape_string() This function escapes (makes safe) any special characters in a string (programmers call text a 'string') for MySQL. 9. Example: $name = $_REQUEST['name']; $safe_name = mysql_real_escape_string($name); Now you know the variable $safe_name, is safe to use with your SQL code. 10. Keep the PHP code to yourself. If anyone can see it they can exploit vulnerabilities. You should take care to store your PHP files and the necessary passwords to access your MySQL databases in protected files or folders. The easy way to do this is to put the database access passwords in a file with a .inc.php extension (such as, and then place this file in a directory which is above the server's document root (and thus not accessible to surfers of your site). Then, refer to the file in your PHP code with a require_once command. By doing things this way, your PHP code can read the included file easily but hackers will find it almost impossible to hack your site. You can find more information about hardening your PHP scripts at: Also, for security purposes, you can refer to these two websites: BlogSecurity You can find more information about hardening your PHP scripts at: PHP Security Consortium: PHP Security Guide Please let us know if you have any other questions or concerns. How did we do? Please help us to improve the support that we offer you by filling out this online survey:
        {{ DiscussionBoard.errors[5752276].message }}
  • Profile picture of the author yukon
    If your running Wordpress chances are the theme was hacked before you ever downloaded the theme.

    Check your theme files for the keyword base64.
    {{ DiscussionBoard.errors[5752337].message }}
  • Profile picture of the author boosters
    check your every file and see the hacker code at the end of the code line. Make sure to check these file .htaccess, robot.txt, index.php, config.php (If available) and rest of the inner pages. You can try sitelock they will scan and detect the code where it was located.
    {{ DiscussionBoard.errors[5752629].message }}
  • Profile picture of the author Zeb
    If you want to skip all the technical stuff (though it's better that if you learn how), you can post a job posting via odesk and get someone technical to find the root of the problem and remove it permanently for you. Just another option that you can take.
    {{ DiscussionBoard.errors[5752700].message }}
  • Profile picture of the author lovboa
    They dont know what should and shouldn't be in your account files because it's from a 3rd party site?

    I think you should change your hosting to a more trusted name. I was hacked, too and I use Host Gator. They looked at my files and determined what shouldn't be there. If they knew how to program they would obviously understand most of the code that seem malicious.
    {{ DiscussionBoard.errors[5753653].message }}
  • Profile picture of the author ElectricChili
    You can use sql script below in your PHPMyAdmin area to look for base64_decode entries in your database. If they show up, delete the row...

    SELECT * FROM wp_options WHERE (option_id LIKE '%base64_decode%' OR blog_id LIKE '%base64_decode%' OR option_name LIKE '%base64_decode%' OR option_value LIKE '%base64_decode%' OR autoload LIKE '%base64_decode%') order by option_id
    {{ DiscussionBoard.errors[5765314].message }}
  • Profile picture of the author ElectricChili
    oh, and then use exploit scanner plugin to scan your files for base64_decode entries. Delete the files if these show up in the results unless you know they are used in a particular plugin or something. Some use it most don't.
    {{ DiscussionBoard.errors[5765344].message }}

Trending Topics