Hi exabees, apakah anda saat ini mengalami error seperti gambar dibawah ini :
How can there be a redirect?
This only happens when the user agent / visitor to your website uses the Windows operating system. If your visitor is another user (such as the same browser on a different platform), everything works fine (No error as above).
Causes of Redirect 301 to iplogger.com?
We have tried to do all the testing and check it. the problem is on the computer that has been entered by malware, it is not. But on the Cloudflare account side that has been controlled by someone else through the API.
How to Fix Web Redirect to iplogger.com
If you're experiencing issues similar to what we're experiencing above, it indicates that your account has been compromised, either due to your Cloudflare email & password being compromised, or due to your Cloudflare account being controlled via an API Integration. You should take immediate action to secure your account and remove any Redirect Rules added without your knowledge. Performing an Audit Log may also be useful for you to analyze.
So, the problem is that someone is creating new Redirect rules by redirecting websites when accessed through Windows. If you experience this, try taking the following actions:
1. Login to the dashboard and select your website
2. In the sidebar, select "Redirect rules" in the "Rules" menu.
3. If there are "Rules" that you do not recognize, delete them.
4. To view the details, click "Edit".
We think this happened because someone accessed a Cloudflare account, either with an email and password, or with the Cloudflare API integration. After some digging, this action was performed from a German IP address.
Avoiding Domain Redirect to iplogger.com
Here is how to avoid "Domain Redirect to iplogger,com" or "Redirect to Download NewUpdaters.zip link" (cdn,discordapp,com/attachments/XXXXXX/NewUpdaters.zip). With just these few security measures the compromised account will be much more secure. If you observe suspicious activity in your Cloudflare account, secure your account with these steps.
1. Remove Suspicious Redirect Rules
Do all the fixes above, and proceed to the Cloudflare account security steps below.
2. Change your password
For more guidance on changing your password, see Change email address or password.
3. Revoke active account session
When there is more than one active session associated with your email account, you can cancel any session that is not the current session.
To revoke a session:
- Log in to the Cloudflare dashboard.
- Open My Profile > Sessions.
- In the specific section, click Revoke.
- You will be prompted to enter your password before canceling the session.
4. Enable Two-Factor Authentication (2FA)
To prevent future intrusions, make sure you have Two-Factor Authentication (2FA) enabled on your account.
