All Website on cPanel were redirected to porn site with new ip and new computer access website

mcsaormoney

Registered
Apr 4, 2013
2
0
1
cPanel Access Level
Root Administrator
When users search on google if new IP and they are never on your own server, they will be redirected to a porn site.

For example:
you go to google search:
- removed -

Click to redirect web:

- removed -

Click on the first result to the website will be redirected to websex. Or visit the web site click on link number 1 will be redirected to porn. This only happens the first time. When customers return to that page, then everything is normal.

Please help me.

Thanks.
 
Last edited by a moderator:

24x7server

Well-Known Member
Apr 17, 2013
1,907
95
78
India
cPanel Access Level
Root Administrator
Hello,

It's seems that your website is infected with the malware and due to that you are facing this issues. Please try to run maldet (Linux Malware Detect) and clamAv scan on your server Also let me know which Apache version are you using on your server.
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,201
363
Hello :)

It looks like your websites may have been hacked. The "Security Advisor" is a good place to start in order to determine methods to increase the overall security of the server:

"WHM Home » Security Center » Security Advisor"

You may also want to consult with a qualified system administrator or security expert for assistance:

cPanel Application Catalog - System Admin Services

Thank you.
 

quizknows

Well-Known Member
Oct 20, 2009
1,008
87
78
cPanel Access Level
DataCenter Provider
Some malware infections check referring URLs. If the click comes from a search engine, it redirects, but if the click comes from inside the site it does not maliciously redirect.

Normally these are found in .htaccess files, or as base64 or otherwise encoded code at the beginning or end of your PHP files. I would start with using the find utility to find recently modified files. If you are not experienced in cleaning this type of infection and determining the initial cause, you should consult a security professional.
 

JaredR.

Well-Known Member
Feb 25, 2010
1,834
23
143
Houston, TX
cPanel Access Level
Root Administrator
You do not need to try to share the link again. Several users already gave you some helpful suggestions for how to fix this. Please review their suggestions and do what they recommended.