The Hack Repair Guy
Forum Replies Created
-
Forum: Fixing WordPress
In reply to: User registration – hackedI understand your concern though installing a security plugin like Better WP Security or Wordfence will generally eliminate the issue.
Forum: Plugins
In reply to: plugins hacked with links to pharmacyDouble check to see whether you have any other directories installed within your website with either old scripts or files you don’t recognize as well.
On a few sites I’ve fixed over the years client swore up and down everything was updated. Then after closer inspection turns out they had forgotten their web designer has installed scripts like Coppermine, and other gallery type scripts in other long forgotten directories.
Yes, reinstalling and deleting then re-adding plugins may help as well.
Hello. Anyone home?
Confirmed here. Apparently their application server is down currently.
Try logging in via FTP or File Manager to start.
Go to wp-contents/plugins
Rename wp security plugin temporarily by adding .something to end of directory name.Generally means an increase in traffic suddenly, as well as a host who is over-limiting your shared account memory allowance.
Just curious.
You are running on a 5 buck a month shared hosting account?I’m asking because I’m seeing this increasingly occurring with some “Walmart” host clients.
I’m fairly sure the bad bots block list includes no IP’s relating to Google so I can’t imagine that aspect of Better WP Security is at fault.
I’ve been using that block list for well over two years with some minor tweaks and not had a single report of googlebot related issues.
Forum: Fixing WordPress
In reply to: My blog has been fully replaced/hacked intoTo start, you should begin by discussing the matter with your host and request they recover your site from an earlier backup.
Once that’s in place, then make sure to change all your passwords and work to ensure all your scripts and such are updated.
Forum: Fixing WordPress
In reply to: Solution for WordPress Website homepage hack again and againIf you are finding your sites are hacked next day, even after changing passwords, your next step would be to change web hosts.
Search for web hosts who discuss “daily malware scanning” on their home page, or specifically discuss security on their home page. Those hosts tend to have better customer service as well as a higher level of security than the “Walmart” hosts provide.
Forum: Fixing WordPress
In reply to: Site hackedIt is quite common for hackers to leave back door scripts in place, such that they can future-hack a website.
It no longer surprise me when I go in to fix a hacked website and find “live” hacker back door scripts installed a year or more prior.
Suffice it to say maintaining a current and updated WordPress installation is vital for ensuring the security of your hosting account as well.
Forum: Fixing WordPress
In reply to: Hacked websiteThere are so many ways a website can be hacked that no single type of prevention will stop all possible ways your site can be compromised.
Develop an internal security policy is your best defense:
1. Change your passwords at least quarterly (dashboard and FTP).
2. Make sure you have only one administrator.
3. Make sure your admin username is not “admin”
4. Try any of the most popoular security plugins, like Better WP Security, Bulletproof Security or Wordfence.
5. Most importantly, make sure to host your website with a web host who will help you fix your site if it’s hacked (and not just suspend you without a second word). There are a few dickish hosts out there that do this, and best to steer clear of that type of customer service.Forum: Fixing WordPress
In reply to: Website Hacked. Need Help please>I’ve downloaded the files in one of my infected sites and scanned it with Sophos virus scanner for Mac.
HTML and PHP files are text files not applications or programs.
Also, web page “malware” are not viruses.
Sophos might catch some obvious long base64 snippets of text, but sophos is an antivirus scanner, not a HTML/PHP malware scanner.
Forum: Fixing WordPress
In reply to: Website Hacked. Need Help pleaseOnce you’ve restore you will have erased all the evidence.
If your web host provides FTP logging you could start there to see if the your FTP account was the entry point.
Forum: Fixing WordPress
In reply to: Website Hacked. Need Help pleaseYou could start by moving your money making site out to it’s own separate account. Lock that down and at least you’ll have one website clean and back up and running quickly.
The others you’ll need to work through one by one in regard to clearing out the hacks, checking every file for malware, updating, changing passwords, etc.
There is no easily solution. Basically, a rain storm hit your dorm room (the type of hosting you have now– dorm room style hosting), and to get fully dry your cheerleaders will need to wander off to to their separate rooms and dry off…
Forum: Fixing WordPress
In reply to: Website Hacked. Need Help pleaseIf you have installed all of your websites within one common directory then you’ve placed yourself in a difficult situation security wise. It is very likely mass hacking of your websites will continue to occur in future.
There are just too many variables with WordPress to be installing all of your sites within a single shared account. If one is hacked all others will be hacked (as innocent bystanders). It only takes a single old forgotten plugin or theme to light the proverbial fire…
Your best approach in future, if you are concerned about the security of your clients, is to move each website off to their own separate FTP user/pass account. This can be done quite easily by transitioning to a cPanel WHM or Plesk style account.
This is a very serious issue, which so many folks simply don’t fully grasp for some reason. Web designers who host multiple websites within one of these so called unlimited shared accounts are simply stacking matchsticks next to the campfire… a disaster waiting to happen.