The Hack Repair Guy
Forum Replies Created
-
Forum: Fixing WordPress
In reply to: Latest stable release of WordPress (3.3.1) can be easily hacked?Sadly there are rumors of a server hack going around in the security community, like this recent post at Unmask Parasites, http://goo.gl/TJ5DW
Continued hacking, particularly of newly installed sites, generally points a pretty muddy finger at the host’s server. Recommend moving to a secure hosting company, or at the least to one who discusses website security on their home page (instead of exaggerated female parts).
Forum: Fixing WordPress
In reply to: Eval, base64, JAVA hacked, could not clean them at all!Are you running a shared hosting account where many websites are sharing the same file space?
If so that may be a symptom to a bigger issue.
Likewise, if you feel your computer(s) may be compromised and access information is being pulled from your computer, then I strongly suggest you use one of the many password management programs, like 1Password. That way your passwords are maintained in an encrypted format and can be more easily randomized respectively.
Forum: Fixing WordPress
In reply to: Eval, base64, JAVA hacked, could not clean them at all!Does the host you use do daily malware scanning and are you able to call them on the phone and discuss how to better lock down your site?
If not, then your host is not meeting your needs, and time to move on…
Forum: Networking WordPress
In reply to: Plugins Hacked?Have you since changed all of your passwords, including your FTP password?
Forum: Fixing WordPress
In reply to: Eval, base64, JAVA hacked, could not clean them at all!WordPress on it’s own is quite secure. Hate to say this, but if you move your website to another web host, with a clean install, changing all of your passwords I would bet you $$$ you won’t continue to be hacked.
Sadly, it sounds like it’s time to try a new host. Find a host with WordPress expertise, who will help you monitor your site for hacks as well.
It’s very possible your site may be extensively compromised. I recommend changing all related passwords as well.
Then I recommend you make sure all is upgraded. Sadly, nowadays it’s rare for hackers to not leave back door scripts in place (allowing hacker to hack your site again in future).
You’ll need to review every file on your website respectively to ensure
none are out of place or were installed by hacker.Forum: Fixing WordPress
In reply to: I think my site just got hacked. Now whatSometimes happens due to plugin related bugs. In future if you see this occur, try removing or renaming the plugin(s) within your plugins folder. That often rights situations of this sort.
Forum: Fixing WordPress
In reply to: domain site hacked 1&1 gave information. don't know how to fixIn simple terms it is very possible you forgot to update your WordPress and the old version or old plugin you forgot to update was used by hacker to hack your website.
Alternately it’s possible your FTP password was stolen through malware on your computer, and/or your FTP password was too simple or guessed.
You may wish to start by asking your web host if they have a backup to recover from.
Forum: Fixing WordPress
In reply to: 2Hacked by Ghost DZ Algerian Hacker" – Ive been hacked againExcellent. Next try Better WP Security as a security plugin or one of the others with high ratings in “Add Plugins.” That may help in reducing your chances of being hacked in future as well.
Forum: Fixing WordPress
In reply to: 2Hacked by Ghost DZ Algerian Hacker" – Ive been hacked againYour best course of action is first contact your host and get them to recover your website from backup. That should likewise correct your log in issues.
Fairly standard back door hacker scripts. Sadly, this means your website has been compromised. I’ve worked on this type of compromise before. This will require someone review every file on the website, remove any/all malware and repair damaged files once found. If you have not done so already I recommend changing all passwords as well (FTP, dashboard, etc.).
Forum: Fixing WordPress
In reply to: My site hacked, restored – BUT still reported as a Attack PageAnother scanner may be found here:
http://www.unmaskparasites.com/And:
https://www.virustotal.com/I often use both when checking sites for malware. Hopefully your hack issues have been repaired up by now.
Forum: Fixing WordPress
In reply to: WordPress Site Hacked?Is very possible you were hacked previously, and hacker simply left a back door script in place. That back door script is then being used to re-hack your site at the hackers pleasure.
So any manner of plugins or themes you’ve installed since then will not prevent the back door script from being run.
Forum: Fixing WordPress
In reply to: WordPress gets hacked at wp-blog-header.php or index.phpHi,
Good to hear you’ve heard about the timthumb related exploits. Definitely a step in the right direction.Likewise, make doubly sure your theme is upgraded, or better yet, try a virgin installation of your theme.
Sadly, nowadays it’s rare for hackers to not leave back door scripts in place (allowing hacker to hack your site again in future). For this reason, you’ll need to review every file on your website respectively to ensure none are out of place or were installed by hacker.
Forum: Fixing WordPress
In reply to: Hacked By El NABILAHJKT48Hi,
Your best course of action is first contact your host and get them to recover your website from backup. Once you have a clean copy in place then run (don’t walk) in making sure all your stuff is updated, all user/passwords changed, etc.Most hacked sites I work on are due to outdated plugins or theme. Try the “timthumb vulnerability scanner” once things are back in place. That may help identify any old timthumb scripts.
Then I recommend you make sure all is upgraded. Sadly, nowadays it’s rare for hackers to not leave back door scripts in place (allowing hacker to hack your site again in future). You’ll need to review every file on your website respectively to ensure none are out of place or were installed by hacker.