WordPress.org

Ready to get started?Download WordPress

Forums

[resolved] My WordPress Blog Hacked with Redirect! (8 posts)

  1. goldford
    Member
    Posted 6 years ago #

    HELP! My traffic has dropped from 1.5 to 2k visitors per day to nearly zero because of some hack or script that was installed without my knowledge, either on the server somewhere or in my WordPress code. When visitors click on my posts through Google they end up being redirected to an ads site somewhere else. If you search google for "watch the office online" you should come up with this post somewhere in the top 3:

  2. http://www.mymindwanders.com/blog/2007/07/14/watch-the-office-online-the-best-site-for-online-streaming-of-the-us-version-of-the-office-is-sidereelcom/
  3. Now when you click on it it should redirect you. However, http://www.mymindwanders.com and http://www.mymindwanders.com/blog is unaffected. It will only redirect you once because I think it logs who is clicking and won't redirect you multiple times, which is why I can no longer see what ad site is popping up. Can anyone help??

  • goldford
    Member
    Posted 6 years ago #

    If I clear the cookies in my browser I get the ad site again - http://your-needs.info/search/index.php?q=watch+simpsons+episodes

  • iridiax
    Member
    Posted 6 years ago #

    Oh boy, your-needs[dot]info is really causing problems. Here is their domain registration info.

  • MarkRH
    Member
    Posted 6 years ago #

    I am seeing the same thing when clicking on the link from the Google Search results. However, if I copy the URL that Google gives to the address bar and go to it directly then your article shows properly. It seems like something is wacked out with your .htaccess file or some part of your code related to the HTTP_REFERER of the link, at least when it's from Google? But, if I make a link to your article on one of my webpages, it goes to the page fine. Just seems to happen when clicking on the link from within the google search results.

  • goldford
    Member
    Posted 6 years ago #

    Yes, thank you Mark... that is what I was thinking - there is something preventing the redirect unless the server request is coming from google. I will check the .htaccess file - how about the HTTP_REFERER though? How would I go about checking that.

    I have been reading about the xmlrpc.php security problem with WordPress 2.3.2 and have replaced that file with a fixed version but I think the damamge is already done.

  • wicked9690
    Member
    Posted 6 years ago #

    Happened to me also. Please see this thread for solution:
    http://wordpress.org/support/topic/179395?replies=4

  • goldford
    Member
    Posted 6 years ago #

    Here is what I found in my .htaccess in the /blog directory:

    # BEGIN WordPress
    <IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteBase /blog/
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteRule . /blog/index.php [L]
    </IfModule>

    # END WordPress

  • goldford
    Member
    Posted 6 years ago #

    Thanks - the forum post linked to solved my problem. I wish I knew how it happened but I guess all I can do right now is upgrade to the latest version of wordpress and hope it doesn't happen again. Thanks for the link Wicked9690!

  • Topic Closed

    This topic has been closed to new replies.

    About this Topic

    Tags