The Hack Repair Guy
Forum Replies Created
-
Forum: Fixing WordPress
In reply to: Recently Hacked? Quick fix here.These are reasonable tips.
Though about 90% of the sites I’ve seen with a similar hack have likewise included back door scripts hiding in the background.So while the above may be helpful, it’s imperative someone review “every file” hosted within the account for malware, base64 coding, etc.
If the back door script remains after fixing the “symptoms” you describe, then no matter of scrubbing off the scum will prevent hacker from returning and doing what they do.
Forum: Fixing WordPress
In reply to: How to know that our site is hacked?When you go to plugins within WordPress and click “Add new”
Enter the following:
malware scannerAll of the five star plugins listed can be quite helpful.
Forum: Fixing WordPress
In reply to: someone has hacked the site and inserted a linkQuite likely hacker has left behind a back door script to re-hack your site in future.
If your web host is unable to recover your website from a good backup, then you’ll need to have someone review each and every file within your site for malware.
Pretty much every hack is different so there is no single way to locate the files.
Forum: Fixing WordPress
In reply to: Hacked SiteFairly common issue.
Check your files and likewise do some searches within your database.Once you locate and remove the hack it still may take months for all the pharmacy links to drop off of Google. Let’s just say been there done that… No fun at all.
Forum: Fixing WordPress
In reply to: Website repeatedly hackedThat’s sad to hear. Hopefully you’ve received a full refund from the elance person (who could not figure out the issue).
A money back guarantee is something WordPress peeps should require of anyone doing security work (since solving the problem or recommendation a solution is what you are paying him/her for respectively).
Forum: Fixing WordPress
In reply to: Website HackedYou have called your host and asked them to recover your site from backup?
If after this episode you find that your host simply does not maintain regular backups I strongly urge you to leave your current host.
It is borderline criminal for a host to not retain daily and weekly backups of all accounts. There are plenty of hosts out there who have enough respect for their customers to ensure they maintain daily and weekly backups. Having been in a middle of a few server failure events I can tell you horror stories that would make your hair stand up on end.
– The true definition of a bad web host:
A bad web host is a host without regular backups available for their customers (free of charge).Ask your host the following to see whether they deserve your business:
“If my site was hacked yesterday, will you recover my site from backup free of charge today?”The best web hosts provide free daily and weekly backups as well as free daily malware scanning
Forum: Plugins
In reply to: [BulletProof Security] hacked with bpsBPS is an excellent plugin, though it won’t help you if your FTP or dashboard password is compromised or stolen.
Forum: Fixing WordPress
In reply to: twentyten search.php hackedYes, with WordPress maintaining the latest upgrades is necessary (at least quarterly), otherwise this or worse situations may occur.
Start by asking your host to recover your site to a previous backup.
Once that is done delete each plugin completely then reinstall.
This may help clear up any malware written into your plugin(s) as well.Use the updates option within WordPress to “re-install now”
That may likewise overwrite other hacks possible written into your files.Forum: Fixing WordPress
In reply to: Hacked SiteHave you asked your web host whether they have backups as well, which they can recover too?
Forum: Fixing WordPress
In reply to: Hacked/Malware, need help pleaseIn addition to the backup notes, I recommend you change all your passwords, and make sure to set only one person as Administrator just in case.
Forum: Fixing WordPress
In reply to: Hacked/Malware, need help pleaseI would start by asking host if they have a backup from prior to the hacker text being added, then recover to that.
Forum: Fixing WordPress
In reply to: .htaccess file hackedThe .htaccess in your main directory is the only one required, and should look something like this:
# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ – [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule># END WordPress
Since your site was hacked it’s likely hacker has hidden some back door scripts as well, which may allow them to re-hack your site again in future.
So you’ll need to first be sure and update every script within your site, WP version, plugins, etc., then work through the process of reviewing every file for hacker code.
This site may be helpful in tracking down the code snippets or files hacked as well:
http://www.unmaskparasites.com/Forum: Fixing WordPress
In reply to: My website is hacked and offlineHave you asked your web host if they have a backup of your site from last week, or just prior to being hacked?
Forum: Fixing WordPress
In reply to: blog hacked! redirects to some asian websiteHi,
Don’t throw out the baby with the bath water just yet.WordPress is perfectly secure. It appears hacker has installed some hidden back door scripts within your site.
So you could re-install a hundred times and still not clear those back door scripts. Your next step is to first reinstall the source scripts using the option in WordPress, image:
http://goo.gl/wABQjYou’ll still need to log in via FTP or File Manager and check every directory on your website in hopes of finding those bad scripts. Sorting by date within your FTP or File Manage can be very helpful as well.