Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: browser hijack showing all my host domains as expired

02 Jul 2014   #11
durango1

Windows 7 Professional 64bit
 
 

hi i will have to do this next step poss this weekend if i can, my external drive is pretty full so i will have to get this backed up when i can and then go forward. On another note i am attacking this on a different front with my host as well. As it may be something like one of these causing this.

An In-depth Analysis of Linux/Ebury

https://www.cert-bund.de/ebury-faq

Linux/CDorked FAQs


Quote:

The compromised systems are used for various criminal activities, such as sending massive amounts of spam, redirecting visitors of compromised websites to drive-by-exploits or running nameservers for malicious domains. See [3] for details.

Our analysis of this malware, dubbed Linux/Cdorked.A, reveals that it is a sophisticated and stealthy backdoor meant to drive traffic to malicious websites.
They are going after smaller hosts which is different than normal


My System SpecsSystem Spec
.
02 Jul 2014   #12
andrew129260

Windows 10 Pro
 
 

Quote   Quote: Originally Posted by andrew129260 View Post
Your web site is using apache 2.2.25 which is not the latest version. Here are the known vulnerabilities for that version:

httpd 2.2 vulnerabilities - The Apache HTTP Server Project

I suggest patching your site.
Did you see what I said back a few posts back?
My System SpecsSystem Spec
02 Jul 2014   #13
durango1

Windows 7 Professional 64bit
 
 

yes sir and i sent my host an email on that. I am a reseller so i dont have that root access... just cPanel and WHM...

Thanks...
My System SpecsSystem Spec
.

02 Jul 2014   #14
andrew129260

Windows 10 Pro
 
 

Keep us posted
My System SpecsSystem Spec
07 Jul 2014   #15
durango1

Windows 7 Professional 64bit
 
 

Just wanted to follow up as i get info.. I was not able to backup my system this weekend sadly but i will as soon as i can get another ext drive.

However... just out of luck i guess, i noticed one of my sites was not verified in webmaster tools... so i went to verifiy it and google said it could not because it was redirected. So it gave me the option to look at the redirect address... and here it is

stupid thing i had to rip it apart tokeep it from being an active link, never see that before..

Code:
 
 
 
//dp.g.doubleclick.net/apps/domainpark/domainpark.cgi?
 
client=ca-dp-rookmedia30_3ph_js&domain_name=stopspambots.org&
 
channel=029103&drid=as-drid-2651543233610982&output=html
So somewhere in that url is our answer to wtheck is going on... This cant be so isolated to me there has to be something that is causing this world wide. Some kind of dns deal. I am using google proxy and no issues. My host has been watching and they got the same finally (was hoping they would see it) and they tried to stop it and could not do so but are still trying. Im thinking someone has gotten into a regional dns server or some dns server and has infected it.

My ISP has no issues with the site, they are watching it too and i will follow up with them on this. I am going to do some googling on that address to see what i can find..
My System SpecsSystem Spec
07 Jul 2014   #16
durango1

Windows 7 Professional 64bit
 
 

well it apprears now, that this may have been my host the whole time. Someone suggested i look at the dns name to see if it was actually expired or not, and so i looked via intodns and low and behold there was the park page address and all of it. the contact was not even my host. So i dont know if my host let the dns expire or if it was hacked or what happend, but i am going to set up my own dns server now so this does not happen EVER again.

i am so mad right now i cant speak.. But thank you andrew and all for your selfless help this forum and you are AWESOME!

Figures after i report it to my isp and contact the park page with criminal report and also report it to google and my registrar as possible illegal activity that this would be the case. This sux..
My System SpecsSystem Spec
07 Jul 2014   #17
andrew129260

Windows 10 Pro
 
 

You are quite welcome.

I wish you luck!
My System SpecsSystem Spec
Reply

 browser hijack showing all my host domains as expired




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
browser hijack.
i have this issues:mad::mad:. every time i click on the Google search result URL it go to the other website:mad:. i already try to use the Malwarebytes Anti-Malware, Rkill , and tdsskiller to scan and remove but it still there. this is the website it direct me to--> (click dot...
System Security
Browser Hijack
Each time we use Google/Bing Engine search, and click on site, we are redirected to other sites, and at the moment it's "bidvertiser....". I have spent the past week and hours on the phone with our antivirus technical support (Trend), and microsoft technical support, and all to no avail. ...
System Security
sharewareisland browser hijack
This website has some nice utilities. But they have some attrocious policies. One of them is if you use any of the software they distribute then you must allow then to hijack your browser start page. If you lock down the home page, they undo the block, intefering with your network security....
Browsers & Mail
Browser Hijack issue
So awhile back i tried to get on internet explorer, but everytime i got on, it redirected me to a page that couldnt be found. even when i typed in a different website, it would start to go there, and then be redirected. i have tried downloading other browsers from my flash drive, but both google...
Browsers & Mail
Need help with Browser Hijack Malware
I've been fighting to clean a virus off my wife's Win 7 laptop. We've battled to a standstill, but I believe the enemy is still lurking on the battlefield (the laptop) and I need help to find the ultimate weapon to win this war! I'm going to put the details of my battles to date here in case...
System Security
Yaa! DLL Hijack Auditor: For Microsoft DLL hijack vulnerability
Not sure if anyone has posted on this tool (or similar tools) yet, but security Exploded makes incredible tools, especially Anti Rootkit tools and Root kit detection tools, so I was happy to learn about this: rmhsCBMIJnA
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 22:02.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App