The Hack Repair Guy
Forum Replies Created
-
Yes, would appear your calendar app has been compromise, well, that is, unless you are legitimately selling “xanax”
Google see’s:
otc drug interactions with xanaxThank you. I’ve removed the plugin for now in order to move forward. I’ll be sure to submit another report if I run into it again. Thanks again for the kind offer to review server wise.
Forum: Fixing WordPress
In reply to: HackedI would start by ensuring all versions are updated to latest (WordPress and plugins).
Then work to change all your passwords (WordPress, FTP, and email).
If all is updated, go to Dashboard and click Updates. Then re-install now.
That may help to overwrite the core files.You’ll then need to have someone visually work through your files and remove any back door scripts to fully clean your account.
Forum: Plugins
In reply to: [Content Cards] Mult columnar layout?Thanks!
Forum: Plugins
In reply to: [Content Cards] Mult columnar layout?A picture example, not using your plugin, at another popular website. This may help to show what I’m getting at…
Forum: Plugins
In reply to: [Content Cards] Mult columnar layout?well, here is a demo:
http://pharm.tvsecure.net/what-we-do/As you can see it’s just two cards one on top of the other, but that’s really too simplistic.
This would look really cool if the cards were about 1/2 the size, with two per row.
Of course responsive for mobile is key here.
(sure I could expend a bit of time doing the hand coding of the CSS myself, but it seems to me that you could implement a responsive multi column option just as easily–greatly increasing the coolness factor of this plugin).
Forum: Fixing WordPress
In reply to: Site hacked, now CSS not working on mobileOnce the hacker is in, they are in, and you’ll need to work through all of your files, remove the malicious scripts and code from files, then work to better harden your site moving forward.
One quick technique for WordPress, if you can log in successfully, is to reupdate your existing installation. See Dashboard -> Updates, then click the button ReInstall Now.
While that will not remove all of your hackers’ script hijacking it may help to overwrite your core files and possibly clear some of the egregious code. Of course this won’t touch your theme files. You’ll need to review those for changes carefully as well.
Forum: Plugins
In reply to: [The Hack Repair Guy's Plugin Archiver] What if you delete this pluginThink of The Hack Repair Guy’s Plugin Archiver as a drop box, the purpose of which is to store stuff (archive it).
Archiving means, well, the files are archived into the dark recesses of your website.
WordPress cannot see them (nor can hackers wandering by looking to exploit them (hint).
Short answer: When you unarchive you may update if you wish.I see no reason why The Hack Repair Guy’s Plugin Archiver would in any way affect Plugin Organizer.
Ahh, widget protection… Interesting. Nice idea!
Forum: Fixing WordPress
In reply to: my sites are redirecting to spam adsIf in need of help, Google is your friend.
Try something like, “website malware repair” or a similar query if looking for help.Hi,
You do not need to use the manual HackRepair.com list in any respect. The iThemes Security folks have nicely included the relevant parts of the list within the plugin already.Sadly, I often find folks have been compromised for weeks or months before hacker actually does anything malicious. That said, it’s unlikely WordPress is at fault.
About 70% of the sites I’ve seen hacked were simply due to stuff being left outdated for many months at a time. In 20% of cases, the issue was a plugin (like an old revslider or Contact Form plugin).
As an aside, people often have other installations of WordPress or other scripts installed within their account, and never think that maybe another script on my site might be the entry point. I’d say about 5% of accounts are hacked due to forgotten scripts sharing the same account.
This is a bogus plugin installed by your hacker.
I’ve seen this installed on many sites previously. Sort of a hacker joke I imagine.Essentially, hacker got in and part of their process was installing a legitimate looking plugin (hoping you would think it was a good plugin and not delete it). So best to remove that, then work through the usual process of cleaning the site of malware.
Love it!
Forum: Fixing WordPress
In reply to: Random URLs Showing in Home PageI would start by ensuring all versions are updated to latest (WordPress and plugins).
Then work to change all your passwords (WordPress, FTP, and email).
If all is updated, go to Dashboard and click Updates. Then re-install now. That may help to overwrite the core files.
You’ll then need to have someone work through your files and remove any back door scripts to fully clean your account.
Verify this has been resolved in version 1.0.9 pretty-please?