1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Is my website hacked? what should I do now?

Discussion in 'Black Hat SEO' started by frankstan, Nov 14, 2014.

  1. frankstan

    frankstan Regular Member

    Joined:
    Jan 14, 2014
    Messages:
    350
    Likes Received:
    44
    Let's say my website url is http://www.abc.com
    When I type site:abc.com in the Google search, there are two websites in the result.
    One is my website http://www.abc.com
    The other is https://abc.com this is a loan site,
    I have contacted the my hosting and they said my website was not hacked?
    So what happened then? What should I do now?
     
  2. foundme

    foundme Newbie

    Joined:
    Nov 11, 2014
    Messages:
    5
    Likes Received:
    3
    That defiantly sounds like you got hacked. I know you can do that kind of redirect in the .htaccess file or by editing wordpress code.

    aw-snap (that thing that goes here) info has a quick rundown of ways to selectively redirect a website. I can't link but searching "Google says my site is redirecting to a malicious or spam site" should find the article.

    Wish I could offer more advice, hope you get it sorted out.
     
  3. Zwielicht

    Zwielicht Moderator in Training Jr. VIP Premium Member

    Joined:
    Aug 31, 2013
    Messages:
    3,837
    Likes Received:
    6,815
    Gender:
    Male
    Occupation:
    Liquidator
    Location:
    Riverside County, California
    Home Page:
    There was a similar post about this a couple of weeks ago where someone was asking how a website that redirects to another website was ranking so well in the SERPs. It turns out the website was a website that was hacked using cross-site scripting and, while entering the URL in the address bar would send you to the correct website, going to the URL via Google would redirect you to a completely different website.

    Here is the original quote from the thread:

     
  4. xjapan

    xjapan Power Member

    Joined:
    Sep 16, 2014
    Messages:
    582
    Likes Received:
    63
    Location:
    unknown
    your site has been hacked. backup your .htaccess from ftp and add this code and replace with your domain name.
    also remember to change your wordpress admin and hosting passwd

    <IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteBase /
    RewriteCond %{HTTP_HOST} ^www\.(.*)$ [NC] RewriteRule ^(.*)$ http://%1/$1 [R=301,L]
    RewriteCond %{SERVER_PORT} ^443$
    RewriteRule (.*) http://abc.com/$1 [R=301,L]
    </IfModule>
     
    Last edited: Nov 14, 2014
  5. frankstan

    frankstan Regular Member

    Joined:
    Jan 14, 2014
    Messages:
    350
    Likes Received:
    44
    My website was not redirected, my url is http://www.abc.com and his website url is https://abc.com
    the domain abc.com are the same
     
  6. frankstan

    frankstan Regular Member

    Joined:
    Jan 14, 2014
    Messages:
    350
    Likes Received:
    44
    Sorry, it doesn't work, when I enter https://abc.com it was still his website, and my website is http://abc.com . same domain no redirect
     
  7. xjapan

    xjapan Power Member

    Joined:
    Sep 16, 2014
    Messages:
    582
    Likes Received:
    63
    Location:
    unknown
    log into your cpanel, check the ssl manager and remove the ssl certificate. check the redirection and remove it
     
  8. frankstan

    frankstan Regular Member

    Joined:
    Jan 14, 2014
    Messages:
    350
    Likes Received:
    44
    Thanks, but I found there is no ssl certificate or any redirection in my Cpanel,
    The hosting support told me like this "Also, this is not the hack page. As your website setup on a shared server, there is already self signed certificate installed on the server and it redirects to an untrusted page if any client's domain is used to access
    Website like https://yourdomain.com"
    He told me "Don't worry about it"
     
  9. hereweg

    hereweg Registered Member

    Joined:
    Oct 29, 2014
    Messages:
    90
    Likes Received:
    3
    I guess hacker is your hosting provider !
     
  10. BlackhatBigfoot

    BlackhatBigfoot Regular Member

    Joined:
    Mar 27, 2011
    Messages:
    242
    Likes Received:
    168
    Occupation:
    Forest worker
    Location:
    Hot a$$ Phoenix
    Have you made any changes to your site recently? You should check your theme using ThemeCheck plugin.
     
  11. west555

    west555 Regular Member

    Joined:
    Dec 4, 2011
    Messages:
    326
    Likes Received:
    130
    Location:
    /etc/passwd
    Regardless of those telling you "you have not been hacked"
    Yes you are
    Now where redirect code is planted thats other thing
    it could be i htaccess, Cpanel, your site header or footer etc... Without detailed access i can't say more
    but If SSL version of your domain points to something that is not your website means someone else planted it there
     
    • Thanks Thanks x 1
  12. frankstan

    frankstan Regular Member

    Joined:
    Jan 14, 2014
    Messages:
    350
    Likes Received:
    44
    Seems there is no redirect, the domain abc.com is same with mine, but the content is different from my site.
     
  13. frankstan

    frankstan Regular Member

    Joined:
    Jan 14, 2014
    Messages:
    350
    Likes Received:
    44
  14. TrafficWizard

    TrafficWizard Junior Member

    Joined:
    Aug 22, 2014
    Messages:
    160
    Likes Received:
    26
    So what was "the problem" ? Did hosting made some *mistake* you fucked up or hacked by random ?
     
  15. Zwielicht

    Zwielicht Moderator in Training Jr. VIP Premium Member

    Joined:
    Aug 31, 2013
    Messages:
    3,837
    Likes Received:
    6,815
    Gender:
    Male
    Occupation:
    Liquidator
    Location:
    Riverside County, California
    Home Page:
    I know, I'm curious about what caused this myself.