Hacked with redirect, help?

sarahvenicebailey@gmail.com
(@sarahvenicebaileygmailcom)

10 years, 10 months ago

Hello,

Alright, so I just bought a new domain and installed the new wordpress. I went through my host which is bluehost. I also purchased sitelock (yeah, lot of good it’s done me…)

After installing wordpress I installed theme catch box and within 5 minutes I had notifications that my site had been hacked and was being redirected and that google was going to blacklist me. What!?!

This is what is says:
Suspicious conditional redirect.
Redirects users to:http://refireads.com/ads/

In everything I’ve read it says to check the .htaccess file, but 1. I can’t find that and 2.is there a step by step on how to fix this type of thing?

Any help would be appreciated!

Viewing 4 replies - 1 through 4 (of 4 total)

Krishna
(@1nexus)

10 years, 10 months ago

Here is your scan result:
http://sitecheck.sucuri.net/results/sarahvenice.com

You need to start working your way through the following resources:
http://codex.wordpress.org/FAQ_My_site_was_hacked
http://wordpress.org/support/topic/268083#post-1065779
http://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/
http://ottopress.com/2009/hacked-wordpress-backdoors/

Additional Resources:
http://sitecheck.sucuri.net/scanner/
http://www.unmaskparasites.com/
http://blog.sucuri.net/2012/03/wordpress-understanding-its-true-vulnerability.html
http://codex.wordpress.org/Hardening_WordPress
http://www.studiopress.com/tips/wordpress-site-security.htm

BTW, if your site is just installed and if you have no contents to lose, you may just delete everything in your site and start afresh with a clean install of WordPress. Also notify your host about the hack so that they too tighten security for your site.

Moderator bcworkz
(@bcworkz)

10 years, 10 months ago

FYI, .htaccess is a hidden file by default. In many file viewers, FTP clients, etc., you need to enable some option in order to see hidden files. WP always tries to create one if it does not exist. If it cannot because of file permission restrictions, pretty permalinks will not work. So if permalinks were working, you have an .htaccess file, at least on Apache systems.

Thread Starter sarahvenicebailey@gmail.com
(@sarahvenicebaileygmailcom)

10 years, 10 months ago

Ok. So, I’ve read through all of the awesome info. Thanks for that. And I’ve finally found the .htaccess file, but what should be in the .htaccess file? Do I need it to run? Here is what is in the file:
`
#0c45ef#
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{HTTP_REFERER}

[hacked code removed – please don’t post that here – use a pastebin if need be – http://pastebin.com/ ]

</IfModule>

#/0c45ef#
# Use PHP5 Single php.ini as default
AddHandler application/x-httpd-php5s .php

# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ – [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>

# END WordPress

Thread Starter sarahvenicebailey@gmail.com
(@sarahvenicebaileygmailcom)

10 years, 10 months ago

Also, what do you recommended as far as protecting my website once I get the issue removed?

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘Hacked with redirect, help?’ is closed to new replies.

Hacked with redirect, help?

Tags

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics