Website hack: the billionth Google search - giveaway redirect

Umeitung auf A popular target of current spam campaigns is a supposed Google giveaway. Accompanied by a shower of confetti, the message "You have made the billionth Google search" appears. Of course, there is nothing to win here and it is a fake. The site serves solely to collect personal data, which is then sold.
The cause of the giveaway redirect is often a hacked (WordPress) website. Triggered by script viruses, after a just under 5-second redirect loop you end up on the data collectors' pages.

Note: We are a web service provider and can help you with all WordPress problems - but not if you have taken part in such a fake competition. Please request immediate cancellation and deletion of your personal data if you should receive (e-)mail or similar from a provider afterwards. Unfortunately, there is nothing to win.

We offer you website security services, website consulting, WordPress maintenance and Joomla services.
Please feel free to contact us if your own website or that of a friend is affected by a spam redirect.



Update from February 2021:

WordPress Amazon Redirect

Unwanted WordPress advertising - "Amazon loyalty program / customer survey"

For a few weeks now, another variant of the unwanted WordPress advertising has been active - users are being redirected to a fake Amazon competition. The supposed Amazon loyalty program is fake.
Do not take part in any customer survey or any competition. This is a subscription trap.
If you have already done so, please request immediate cancellation and deletion of your personal data from the respective provider. Do not worry about any payment obligations that are supposedly arising from this. That is not the case with this scam.

Remove WordPress redirect to the Amazon competition

Finding the source of the Amazon redirect and removing it permanently can sometimes be difficult. Redirects can be triggered in several places.

You can find an overview of the possible manipulations here. In addition, care should be taken to remove all backdoors left behind by the hack.

Click "Allow" if you are not a robot (I am not a robot)

Ich bin kein Roboter Meldung - Klicken Sie auf


The redirect loop ending on the competition (consisting of several "I am not a robot" messages) is a sure sign that the website you actually want to visit has been hacked.
If you are the site owner yourself, you should act immediately so as not to scare off potential visitors.

A general guide to WordPress virus removal:
https://website-bereinigung.de/wordpress-gehackt

Sometimes the site owners are not yet aware of the infection, and contact should be made through another channel to draw attention to the issue.

Under no circumstances click "Allow" - you are not a robot - and do not enter any personal data for the fake search contest.

Where is the script virus hiding and how can it be removed?

This varies greatly from case to case. If you are lucky, it only needs to be removed from the database. In that case, all WordPress pages/posts contain a <script> injection in the wp_posts table, which redirects the page visit. In more serious cases, all files on the web space are affected. These can be PHP, JavaScript, or HTML files.
Modified .htaccess files can also be the cause of the website competition redirect.

You can find a more detailed article on the topic here.
It includes, among other things, a useful SQL command for removing script injections from the database.

/!\ Attention: After removing the symptoms, the entry point must also be analyzed and fixed. Otherwise, "You have made the billionth search" could quickly reappear. In a hack, backdoors are usually scattered across the web space. If the cleanup is not complete, reinfection is highly likely.

Would you like us to solve the problem immediately and reliably for you? Send a Request a Quote!

We specialize in repairing and securing hacked websites. In addition to cleanup, we take care of all updates and implement several security measures so that your website is as well protected as possible against hacker attacks.


P.S.: According to a presentation by Google (end of 2019), around 3.5 billion searches are performed every day.

Details
Last Updated: 11 February 2021

Additional offers

Customers about us

„The conversion of our Joomla website from PHP 5.3 to PHP 7 was super fast, affordable, and with impeccable results. Very good and friendly communication.“
– H. Bergmann

„Within one day, everything was done extremely professionally and extremely quickly. Very trustworthy. Excellent. 5 stars“
– Fernando V.

„I was unable to help myself, but here I found the expertise needed to get everything cleaned up again. Necessary updates and backups were carried out, everything was extremely affordable, fast, and good!“
– Klaus-Peter

„The site looks great – everything as before – and on PHP 7.2 – I am impressed - many heartfelt thanks!“
– Dr. Ingo Wuddel

„Since we run an online shop, it was very important to us that our site was quickly available again with full functionality for our customers. All work is carried out extremely quickly to our complete satisfaction.“ – Loewen Handels GmbH

„Very fast, reliable, and effective handling of the problem. In addition, I was given tips and Strato-specific information to reduce the risk of the problem recurring.“
– Heino B.

„The contact was exceptionally friendly, and some cosmetic additional work was taken care of on its own - as if it were completely natural. I am relieved and very grateful.“
– R. Mayer

„Great. In an absolute emergency, after 2 domains were blocked by Strato due to a hacker attack, both domains were initially temporarily back online the same day.“
– I. Radchenko

„Excellent service. Problem solved within 18 hours. We are delighted. Thank you very much 🙏“
– Tien Sy Vuong

Website-Bereinigung.de support service
5,0 205 Reviews > 5
Google Reviews

Contact options

This email address is being protected from spambots. You need JavaScript enabled to view it.
Contact form

Schedule a call
+49 (0)2406 969796
Mon. - Fri. | 9 am - 9 pm