[fx.php_list] Re: Server redirect - desparate! resend

• From: Chris Moyer <cmoyer@xxxxxxxxxxxxxx>
• To: fx.php_list@xxxxxxxxxxxxx
• Date: Wed, 21 Dec 2016 12:39:13 -0500

Have you checked your .htaccess file?

*******************************

Chris Moyer
The Moyer Group
Phone: 404-229-1127 <tel:404-229-1127>
http://www.moyergroup.com ;<http://www.moyergroup.com/>

On Dec 21, 2016, at 12:21 PM, Rodney Schmidt <rschmidt11@xxxxxx> wrote:

Sorry to resend. If anyone has an immediate suggestion would you mind 
replying directly to me at rschmidt11@xxxxxx <mailto:rschmidt11@xxxxxx>. 
THANK YOU!

---------------------
Many years ago I began with FX.php and have stuck with it. Created a 
university school admission inquiry system using FX and an FMPRO server 
feeding directly into FM DB through the web. Has worked flawlessly for 15+ 
years. MAC server and FMP 12 clients and server. Now I am retired but still 
helping.

This  problem looks like a malware issue. (My neighbor on a windows box has 
continual similar malware problems.)

The URL is being re-directed to a spam website. I suspect that  a malware, 
likely on a windows box, captured the URL and a redirect got set up anytime 
the http request is served.  

The URL:
 http://livemusic.ecu.edu/admission.php ;
<http://livemusic.ecu.edu/admission.php>

The redirect: 
http://ww1.programming-in.net/?fp=pNLv6mmlcCdMmkKEebfssaeFH5I53xmJCdiL6WzX91P3S4d4H1hDG6AE3sqO%2BQ0O0aUp%2BWY%2F916qKwRTyqvIRA%3D%3D&prvtof=Wlxcl26nwjMiMHC5VD7v3XCUzUSn1tZzuUb8MZYHj7ku95vXSkjGX3jSbOvFE0XBkR96Ncz8b0l9Jg5fExUaBw%3D%3D&poru=OwQTK15AOnPWlAKvR2dswmplXKhyQuf173%2BqiVdKzj8ZLRnytt3vw5SLUNih%2BBXm&cifr=1&;
 
<http://ww1.programming-in.net/?fp=pNLv6mmlcCdMmkKEebfssaeFH5I53xmJCdiL6WzX91P3S4d4H1hDG6AE3sqO%2BQ0O0aUp%2BWY%2F916qKwRTyqvIRA%3D%3D&prvtof=Wlxcl26nwjMiMHC5VD7v3XCUzUSn1tZzuUb8MZYHj7ku95vXSkjGX3jSbOvFE0XBkR96Ncz8b0l9Jg5fExUaBw%3D%3D&poru=OwQTK15AOnPWlAKvR2dswmplXKhyQuf173%2BqiVdKzj8ZLRnytt3vw5SLUNih%2BBXm&cifr=1&;>

I suspect that the issue may have been initially with the recaptcha code. I 
removed recaptcha. The URL is “captured” and the redirect is immediate. 
Faster than an old meta redirect.

I moved the entire system to another folder on the same server. Still 
redirects. Changed the file names. Still redirects. All http requests go 
through university servers. What do I ask/tell them??

HELP!

Any ideas? Possibly a solution??


Rodney Schmidt
rschmidt11@xxxxxx <mailto:rschmidt11@xxxxxx>
----------
"You speak the language, but you have no idea what you are saying." -Zvi 
Zeitlin (1922-2012) [http://tinyurl.com/jwdrstk ;<http://tinyurl.com/jwdrstk>]

• References:
  • [fx.php_list] Server redirect - desparate! resend
    • From: Rodney Schmidt

Other related posts:

• » [fx.php_list] Server redirect - desparate! resend- Rodney Schmidt
• » [fx.php_list] Re: Server redirect - desparate! resend - Chris Moyer

1. Home
2. fx.php_list
3. Archive
4. 12-2016

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---