My WordPress Blog Hacked with Redirect!

Resolved goldford
(@goldford)

15 years, 10 months ago
HELP! My traffic has dropped from 1.5 to 2k visitors per day to nearly zero because of some hack or script that was installed without my knowledge, either on the server somewhere or in my WordPress code. When visitors click on my posts through Google they end up being redirected to an ads site somewhere else. If you search google for “watch the office online” you should come up with this post somewhere in the top 3:
- http://www.mymindwanders.com/blog/2007/07/14/watch-the-office-online-the-best-site-for-online-streaming-of-the-us-version-of-the-office-is-sidereelcom/

Viewing 7 replies - 1 through 7 (of 7 total)

Thread Starter goldford
(@goldford)

15 years, 10 months ago

If I clear the cookies in my browser I get the ad site again – http://your-needs.info/search/index.php?q=watch+simpsons+episodes

iridiax
(@iridiax)

15 years, 10 months ago

Oh boy, your-needs[dot]info is really causing problems. Here is their domain registration info.

MarkRH
(@markrh)

15 years, 10 months ago

I am seeing the same thing when clicking on the link from the Google Search results. However, if I copy the URL that Google gives to the address bar and go to it directly then your article shows properly. It seems like something is wacked out with your .htaccess file or some part of your code related to the HTTP_REFERER of the link, at least when it’s from Google? But, if I make a link to your article on one of my webpages, it goes to the page fine. Just seems to happen when clicking on the link from within the google search results.

Thread Starter goldford
(@goldford)

15 years, 10 months ago

Yes, thank you Mark… that is what I was thinking – there is something preventing the redirect unless the server request is coming from google. I will check the .htaccess file – how about the HTTP_REFERER though? How would I go about checking that.

I have been reading about the xmlrpc.php security problem with WordPress 2.3.2 and have replaced that file with a fixed version but I think the damamge is already done.

Wood & Co Creative
(@wicked9690)

15 years, 10 months ago

Happened to me also. Please see this thread for solution:
http://wordpress.org/support/topic/179395?replies=4

Thread Starter goldford
(@goldford)

15 years, 10 months ago

Here is what I found in my .htaccess in the /blog directory:

# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /blog/
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /blog/index.php [L]
</IfModule>

# END WordPress

Thread Starter goldford
(@goldford)

15 years, 10 months ago

Thanks – the forum post linked to solved my problem. I wish I knew how it happened but I guess all I can do right now is upgrade to the latest version of wordpress and hope it doesn’t happen again. Thanks for the link Wicked9690!

Viewing 7 replies - 1 through 7 (of 7 total)

The topic ‘My WordPress Blog Hacked with Redirect!’ is closed to new replies.

My WordPress Blog Hacked with Redirect!

Tags

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics