Anond
Forum Replies Created
-
Dear Matt,
Actually thank you for your great support. As of now, everything seems fine. I blocked those IPs and also enabled “disable code execution on uploads” option. Besides those I got rid of old plugins left overs just in case you know …. BTW, I will let know whatever happens either way. And 1 more thing. I’ll upgrade to premium version just because of your great customer care. You are the best!
Regards,
Dear Matt,
I just sent you all suspicious files as well as the raw access log. Thanks again for all your help and support.
Regards,
I couldn’t believe what I saw; 9 malicious files + 1 changed from original version. It’s so disappointing after two days of cleanliness. I will definitely send you the files. I really appreciate your help Matt.
Regards,
Thanks a lot for your response Matt! Actually that option is enabled and I’m running another scan session right now with no sign of infection SO FAR. Do you need my WP credentials or ftp?
Regards,
WordFence,
I scanned the website (with High Sensitive + Photo/Binary Files options on) today with no sign of infection but whenever I think it’s gone, it comes back and creates malware fake PHP files. Any ideas?
Regards,
@mvincik, thanks for your concern! I’m already aware of Visual Composer security issues but fortunately I don’t have that plugin or any other page builders installed on my website.
& Wordfence,
There’s a bad news. After two days when I came back to work today, faced with 6 malware containing files on Wordfence security scan/warning page. It seems the big bad wolf is back or I’d better say it’s been there all the time. After removing all malwares I rescanned the website with high sensivity and images & binary files scanning enabled with no security problems found. So what’s the next step. I already changed all the passwords after scanning.
Best regards,
With all my respects I’m 100% disagree with your opinion. Nowadays you CAN’T ride a Ford Focus and expect Lamborghini’s options. Just be realistic and balance your expectations based on the fact “Whatever you pay whatever you’ll be served”. For a free plugin Wordfence is the best ant the mos complete one among all the other security plugins (which I’ve tried bunch of them before).
Dear Matt,
Sure, I will. I’ll let you know if it comes back. Thank you guys for following up and your support.
Regards,
Hello Matt,
Appreciate your response! I’ve already read that section (another thanks for providing documents and info on your website). Also I’ve taken all your mentioned steps with no success (the worst luck). luckily, I had an old backup of the website back to the point that it hadn’t been hacked yet. After restoring, everything looks fine. Now I’m adding my new posts/pages from the most recent backup. BTW, thanks again for your great plugin and of course for your time and assistance.
Best regards,
Hello Brian,
Thanks for your response! Everything is up to date and there’s no extra theme in there. Any clues?
Regards,
I forgot to say I already checked outside WP installation option as well with no security issues.
Plugins deactivation …. Done
Fresh Backup Plugin installation …. DoneI started creating manual backup around 8 mins ago and it’s still trying with no sign of success.
Dear Paul,
Thanks for your response! I have edited wp-config file with no luck but I haven’t tried to deactivate all the plugins. I’ll do it right away and will get back to you with the result.
Regards,
Unfortunately, It hasn’t resolved yet even in ver. 3.2.2
Forum: Plugins
In reply to: [BackUpWordPress] Version 3.2.2 Still Not WorkingStill the same error message:
shell_exec() has been disabled for security reasons, httpd.www/wp-content/plugins/backupwordpress/classes/class-backup.php, 1860
and no backup file.