WordPress.org

Ready to get started?Download WordPress

Forums

IP address denied (18 posts)

  1. Bloke
    Member
    Posted 1 year ago #

    I got the following message when I view my website:
    Access denied. Your IP address is blacklisted. If you feel this is in error please contact your hosting providers abuse department.

    I am using Bluehost. When I contacted them they said "It looks like your IP address has been added to our local blacklist because it was part of an attack on our servers targeting WordPress sites yesterday and today. This means that your computer was hacked and used by the hackers as part of this attack. Please use an antivirus program to scan your computer for the virus which caused this problem."

    Does anyone have more information on this any how this happened? They were referring to my localhost IP address not the site I have online. So are they saying my local site was hacked and not the one hosted by Bluehost? What should I look for because my virus protection didn't find anything. I also changed my admin name and password to something else because I read a recent attack was targeting accounts with Admin.

  2. WPyogi
    Volunteer Moderator
    Posted 1 year ago #

    Try clearing your browser cache and cookies.

  3. Bloke
    Member
    Posted 1 year ago #

    Yes I did all that before contacting the hosting company.

  4. Krishna
    Volunteer Moderator
    Posted 1 year ago #

    This means that your computer was hacked and used by the hackers as part of this attack. Please use an antivirus program to scan your computer for the virus which caused this problem

    Did you follow the instructions from your host? If not, you need to do that and contact your host. WordPress has nothing to do with that.

  5. Pioneer Valley Web Design
    Member
    Posted 1 year ago #

    WordPress has nothing to do with that

    If your site was hacked, it may be hosting malware..all you then needed to do was visit it and your computer could be infected...then you become a member of the botnet...

    At this point you need to check this at Sucuri and I recommend a safe mode scan of your PC with Malwarebytes...

    And this has everything to do with WordPress...WP allows using a default UN and weak passwords....hence why it is being attacked...

  6. If your site was hacked, it may be hosting malware.

    It is possible but probably unlikely. The infection could have come from any website.

    The facts are that the OP's personal PC was used in a bot net to make brute force login attempts to random WordPress sites hosted on Bluehost. Don't try to read more into it.

    So no, the fact that the OPs computer has a virus has NOTHING to do with WordPress.

    @Bloke your personal computer is infected with a virus and is being controlled by a hacker to make hack attempts against random WordPress websites. You could have gotten the virus anywhere. NBCs website was recently compromised and infecting unsecured PCs with driveby download exploits. Many other major websites have also been recently hacked to serve driveby downloads to unsuspecting visitors.

    There are many other sources which could have infected your computer. The bottom line is that you need to have the virus removed. You can also prevent botnet controll of your PC by using opendns, which blocks outgoing requests to known phishing and botnet controller domains and IP addresses.

    Here is a list of trusted free resources which you can use to clean your PC

  7. Bloke
    Member
    Posted 1 year ago #

    I have scanned my PC thoroughly with Spybot and Norton and nothing was found. Where else can I look? I read that some of these attacks leave files or make changed to your WP files. Its hard to know what to fix if I don't know what to look for.

  8. esmi
    Theme Diva & Forum Moderator
    Posted 1 year ago #

    You really need to speak to your ISP about this.

  9. Bloke
    Member
    Posted 1 year ago #

    Brighthouse/Earthink is my ISP. It was my local computer they say not anything hosted anywhere.

    "This means that your computer was hacked and used by the hackers as part of this attack. Please use an antivirus program to scan your computer for the virus which caused this problem."

    But if no virus is found then what do I do? I figured this is the best place to ask because the ISP is not a WordPress expert.

  10. esmi
    Theme Diva & Forum Moderator
    Posted 1 year ago #

    It's not WordPress that is blocking your IP address. It's your hosts. We really can't help with this.

  11. Bloke
    Member
    Posted 1 year ago #

    Read this post on link below. These two users were using Bluehost. Similar problem and not real virus. But their WordPress files were changed. So this would be a WordPress issue because no one at Blue host told me to search specific files or folders. But I didn't have this in my files either.
    http://wordpress.org/support/topic/access-denied-your-ip-address-127001-is-blacklisted-if-you-feel-this-is

  12. Andrew Nevins
    Barrel Rider, Spam Zapper & Volunteer Moderator
    Posted 1 year ago #

    I don't see how that thread concludes that this issue is responsible with WordPress. That thread infers that users were hacked, which correlates to Bluehost's conclusion that your website was hacked.

  13. Bloke
    Member
    Posted 1 year ago #

    But I don't think my website was hacked. It was reporting my IP address was blocked. I could view my site from another IP address. My local site is behind a firewall.

  14. esmi
    Theme Diva & Forum Moderator
    Posted 1 year ago #

    This is NOT a WordPress issue. It's something that you need to discuss with your hosts & ISP. We cannot help you here.

  15. Bloke
    Member
    Posted 1 year ago #

    Maybe Bluehost got so many attack attempts thy blocked everyone's IP that use WordPress because they unblocked me as soon as I asked them. I asked Bluehost and they couldn't tell me anymore details of my specific case. Just that my IP was blocked because its was part of an attack on our servers. So what is to stop this again? I have checked with all you WordPress experts and I contacted my hosting company. I scanned my computers for any virus. Updated the few plugins I have. Current WP. My user name was not "admin" which the recent attack was targeted against.

  16. WPyogi
    Volunteer Moderator
    Posted 1 year ago #

    Yes, many hosting companies did that (at least temporarily) - see:

    http://wordpress.org/support/topic/brute-force-attacks-and-wordpress?replies=2

  17. MickeyRoush
    Member
    Posted 1 year ago #

    @ Bloke,

    Is your IP static or dynamic? Since most blocking assumes that the IPs that are connected with this latest attack are static, you may not have anything wrong with your computer and the blockage is mistake because of the static IP assumption.

    I bet you're IP is dynamic and this blockage is a mistake. But the only way is for you to find out if your IP is dynamic or not. Which means any computer in your ISP range could have been the culprit and not you specifically. As previously mentioned you may need to contact your ISP to find out more.

  18. Bloke
    Member
    Posted 1 year ago #

    The IP they said was blocked was my computer's IP which I assume is static it never changes. Everyone else could view the site.

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags

No tags yet.