perezbox
Forum Replies Created
-
Forum: Plugins
In reply to: [W3 Total Cache] MalwareIf you engage the Sucuri Research team at labs@sucuri.net they’d love to learn more about the case and figure out the specifics of your environment and what you’re seeing. It might make for a very interesting write up.
Thanks
Forum: Fixing WordPress
In reply to: All my wordpress sites have been hackedDid you get your issue resolved? Can this ticket be resolved?
Forum: Hacks
In reply to: how to use grep or findstrAnother good resource is this cheat sheet put together by the WebDevStudios team, it’ll walk you through a number of CLI commands: https://github.com/WebDevStudios/CLI-Cheat-Sheet
Forum: Fixing WordPress
In reply to: Has my WordPress site been hacked?I’d recommend you kill php execution in that directory to make sure backdoors like that Filesman are never used again. I talk about that here: http://blog.sucuri.net/2012/08/wordpress-security-cutting-through-the-bs.html
<Files *.php> Order Allow, Deny Deny from all </Files>You want to make sure you use this in uploads as well.
Forum: Fixing WordPress
In reply to: My site is hacked?Hey CTAndrew
Yup, looks like you’re injected with SPAM: http://sitecheck.sucuri.net/results/citystones.net
Here are a couple of articles that will help you out: http://blog.sucuri.net/2013/02/payday-loan-spam-affecting-thousands-of-sites.html
Cheers
Forum: Fixing WordPress
In reply to: Has my WordPress site been hacked?Hi Q
You’re dealing with something known as Search Engine Poisoning (SEP). You’ve lost your ranking because of the SEP attack. What we have found is once you repair your environment you can often regain your website reputation with Google by submitting it for reconsideration.
Are you able to share your domain with us?
Forum: Fixing WordPress
In reply to: malware problemHi @belz2000
First, you have a number of things going on here and it’s probably best you break it out into smaller more manageable pieces.
1 – If you have a new theme and don’t require anything from the older provider, then I recommend creating a new hosting profile, installing that theme and starting from scratch.
2 – If you plan to use the old work, or pieces of it, the only sure way of getting it taken care of is engaging someone to provide you a malware review of the site or employing a dev to break out the features you want.
3 – As for your other website, yup, it’s infected just see here: http://sitecheck.sucuri.net/results/www.littlebusinesses.co.uk/. You have what is known as a malicious redirect. The complexity in these attacks can range in complexity. A good place to start here is as follows:
- Check .htaccess
- Check root index.php
- Check index / footer / header / functions PHP files in your wp-content
This won’t address every case, but it’ll likely point you in the right direction. Another great free forum is Badware Busters
Hope this helps. Your other option is always to employ professionals to give you a hand.
All the best
Tony
Hi
That’s an interesting perspective but a few points of clarification:
– Remote Malware scanning – Free in the Dashboard
– Hardening – Free in the Dashboard
– Post hack Guidance – Free in the Dashboard
– Login Audits – Free in the Dashboard
– Integrity Checking – Free in the Dashboard
These are all the things it is referring to being free. Yes, there are paid services for automated monitoring and remediation and protection. It doesn’t mean that what you get in the plugin is not valuable as well.
Thanks for the feedback.
Tony
Forum: Plugins
In reply to: [Social Media Widget] Anyone know why Social Media Widget was removed?Hi Otto
That makes sense, every circumstance is different.
Thanks
Tony
Forum: Plugins
In reply to: [Social Media Widget] Anyone know why Social Media Widget was removed?@karenalenore yeah I’m with @mvandemar, not seeing any evidence of this being used for what you’re saying. Are you sure that is the source and you don’t have other issues in your site? You might want to open a ticket in the hacked or malware tracks for help.
Thanks
Forum: Plugins
In reply to: [Social Media Widget] Anyone know why Social Media Widget was removed?@mindctrl, wow, that’s not what I understood from his message. Where do you see that?
Forum: Plugins
In reply to: [Social Media Widget] Anyone know why Social Media Widget was removed?Hi Otto
I’m having a very hard time with your latest insight.
What insight can you provide that will help reassure plugin users that this has in fact been resolved? Speaking of which, what exactly was resolved?
I have a hard time understanding how this is being allowed back in the repo, maybe you have all the answers you need, but allowing it back in the repo essentially tells people it’s good to go and you’re putting your name behind it as the approver. This is a pretty blatant abuse of trust by the author, and not much has been said from them on how it happened and how it has been adressed.
Tony
Forum: Plugins
In reply to: [Social Media Widget] Anyone know why Social Media Widget was removed?Like Otto states, i would not recommend using that plugin any time soon. Even if the version has been updated to address the issue, it’s a big concern that it even made it into the core of the plugin at all. This tells you that there is a serious access problem for that dev.
Forum: Plugins
In reply to: [Hide Login+] Impossible to open LOGIN PAGEHi
Yes, something is not right, but I don’t think its the plugin as much as it is specific server environments.
To get your wp-admin back go to your .htaccess file and remove the code they added. That should pop your wp-admin back.
Tony
Forum: Fixing WordPress
In reply to: Malware from wp-count.phpYeah, sorry, that really didn’t say anything.
What have you done the previous 2 times to get it resolved? Have you followed the steps already outlined above?
Have you read any of the posts offered by kmessinger?
I would also recommend reading this post: http://blog.sucuri.net/2012/10/dealing-with-todays-wordpress-malware.html
Thanks