The Hack Repair Guy
Forum Replies Created
-
Forum: Everything else WordPress
In reply to: WP Jobs is downcodepoet.com is “on hold,” is no longer being managed, and/or accepting new applicants.
So may not be the best place to continue referring folks as well.
Forum: Fixing WordPress
In reply to: My website has been hacked (more than once)This sort of situation is generally not too hard to resolve.
First, check your computer(s) for malware / antiviruses
Second, change all of your related passwords (email, ftp, hosting, WP dashboard, etc.)
Third, click Updates->Reinstall now button, to overwrite your core files.
Fourth, change your index.php permissions to 444 since that’s being modified first (just to see what happens).These steps might actual stop the attack cold.
Forum: Fixing WordPress
In reply to: infolinks injection – site hackedIs a relatively common occurrence, and can be controlled through systematic steps in being proactive security wise:
First.
Try focusing on entry points.
Restrict access, change passwords, etc.Second.
Systematically remove and replace components with virgin copies.These two steps alone may lick the hacker and block them from compromising your account further.
Forum: Plugins
In reply to: [Stealth Login Page] Is this plugin usable on a members focused site?Seems like a reasonable question and answer to add to your FAQ
🙂Forum: Fixing WordPress
In reply to: Hacked? Cannot access WP- AdminHi,
It does indeed appear your WordPress blog has been damaged in some way.
The usual links to your dashboard are not working as well.A relatively comment event. Hacker likely gained access to your FTP account and uploaded the files or used your Admin password to add their own plugins.
Changing password for everything would be my first thing to do.
As a side note, the poor rating of this plugin may be a good lesson learned as well.
Forum: Fixing WordPress
In reply to: Again hackedYou have two solutions:
1. Recover your theme directory from a backup from prior to hacker compromising your site.
2. Find a virgin copy of the theme and use that to replace the files which were damaged.
Forum: Fixing WordPress
In reply to: hacked (code injection)Is more likely the site had been hacked previously and in that previous hack, hacker had installed some back door scripts. This is a common event. Never surprises me when I view a hacked site and find back door scripts had been installed months prior.
Security fix?
Look for out of place scripts and likewise be sure to change “all” passwords related to the site (WP admins, Email passwords, FTP passwords, etc.).Forum: Fixing WordPress
In reply to: Hacked twice ;(15 years of experience says, if your host allows 777 permissions you need to move to a more secure host as soon as possible to do so. That’s just wrong and has been for years.
Outdated servers = I was hacked.
Forum: Fixing WordPress
In reply to: Hacked twice ;(File permissions good or bad will not allow your site to be hacked, unless the server is quite badly configured or has not been updated in the past five years.
Outdated versions of WordPress, pluginss or themes are virtually always the reason how/why.
Alternately, be sure to change all passwords associated with your account, and likewise check your computer for viruses or malware.
Forum: Plugins
In reply to: [BulletProof Security] Blackhole Exploit KitAgreed.
I receive a good number of calls each month specific to AVG scanner software. AVG software shows client’s site as compromised, apparently due to long but legitimate JavaScript strings, or long login link, like this example:
http://my+site.com/?password-protected=login&redirect_to=http%3A%2F%2Fwww.m
y+site.com%2F%3Fdoing_wp_cron%3D1368628417.3787839412689208984375Then, once one of these software programs, like AVG or McAfee state a site is compromised, this may then start a chain reaction where other less scanners pop up with similar malware alerts, a knee jerk reaction to the scanners higher up in the food chain.
Once you submit a clear or review request for the website in question, it usually takes up to a week for the situation to fully clear up.
Forum: Fixing WordPress
In reply to: My site has been hacked while installing SiteLock!!!It does sound a lot more like your computer has been compromised than anything else.
Have you run a number antivirus or antimalware software checks on your computer yet?
Forum: Fixing WordPress
In reply to: WordPress Site HackedSadly, this does occur quite often.
Hacker has compromised or replaced some files on your website causing the site and scripts to fail.Forum: Fixing WordPress
In reply to: My site has been hacked while installing SiteLock!!!See your .htaccess file, and try to replace it with a backup of your .htaccess from yesterday.
Forum: Fixing WordPress
In reply to: Files randomly dissapear… WordPress hacked… still!!!If you are changing your passwords regularly then the hack is occurring due to either:
1. Malware or viruses on your computer allowing hacker to see or obtain your password there.
2. Stolen email password. Change your email passwords as well.
3. Back door scripting hiding in your account.
4. Outdated plugin or other software hiding in the shadows.