My Site's been hacked!

W

whitetigerdk

Active member
Oct 24, 2018
293
67
43
YUCATAN.DANCE said:
THERE IS ONE THING I WOULD LIKE TO SUGGEST, I'VEE SEEN RANDOM PEOPLE (NEWLY CREATED ID) SHARE RESOURCES IN COMMENTS WITHOUT ANY PROPER BACKGROUND CHECK OF THAT PLUGIN/THEMES. I THINK THAT NEEDS TO BE PROHIBITED FOR THE SAFETY OF OTHERS.
Click to expand...
Indeed.. Need to report every time we see to have resource/user removed..
 
  • Like
Reactions: YUCATAN.DANCE
OVOSZN

OVOSZN

Well-known member
Trusted Uploader
Apr 19, 2020
122
374
63
monkeyman76 said:
I had this last month, it writes to an about.php, and the .htaccess file stays in the server's memory so you have to constantly delete the file sit rewrites, and flush the memory, it cost me two weeks of constantly fixing, lost revenue and I lost 2 clients. I eventually paid for Securri and they sorted it out. My advice is on Black Friday and Cyber Monday see what plugins you can get for cheap and start buying them if you can, nulled plugins can have malware in them, I only use them as demos so I stop wasting money on plugins that don't work
Click to expand...

You shouldn't use nulled plugins on production websites, even more so when clients are involved. They're great for testing on staging sites to see if they do what you need - you then purchase a licence. Unfortunately, the only thing that cost you revenue is cheaping out by not purchasing a licence.
 
  • Sad
Reactions: YUCATAN.DANCE
the_jester

the_jester

Active member
Trusted Uploader
Oct 16, 2019
373
189
43
@YUCATAN.DANCE on production if you have a tight budget & it's a personal site, grab some legit activations from the trusted sellers here & for other plugins, like the backup ones and stuff, either do it manually yourself or use the free version. Wherever a free version + manual work can do the trick, do that. It'll save you from these headaches & give your site better performance (by reducing number of pplugin)
 
YUCATAN.DANCE

YUCATAN.DANCE

Active member
Aug 11, 2018
212
59
28
Dhaka
lilac-e-designs.com
the_jester said:
@YUCATAN.DANCE on production if you have a tight budget & it's a personal site, grab some legit activations from the trusted sellers here & for other plugins, like the backup ones and stuff, either do it manually yourself or use the free version. Wherever a free version + manual work can do the trick, do that. It'll save you from these headaches & give your site better performance (by reducing number of pplugin)
Click to expand...
will do from next time. thanks! <3
 
tuton012

tuton012

Strive for progress, not perfection
Babiato Lover
Trusted Uploader
May 23, 2019
1,607
2,060
120
Near You
YUCATAN.DANCE said:
been using babiato resources from 2018 bro. never experienced such kind of weird problem. but it happened recently. must be some plugin causing the issue.

THERE IS ONE THING I WOULD LIKE TO SUGGEST, I'VEE SEEN RANDOM PEOPLE (NEWLY CREATED ID) SHARE RESOURCES IN COMMENTS WITHOUT ANY PROPER BACKGROUND CHECK OF THAT PLUGIN/THEMES. I THINK THAT NEEDS TO BE PROHIBITED FOR THE SAFETY OF OTHERS.
Click to expand...
We make an effort to abide by the standards that have been set up in our community about new users contributing resources in threads. The best advise is to report any questionable comments made by new members because we moderators monitor an average of about 190,000 people, making it challenging to keep track of everything. If necessary, we'll evaluate the comments and take appropriate action. best recommendation at the moment is to use the download button on the page at all times, or make sure you're downloading from a trusted user who has the Nullmaster badge since Babiato has approved them.
 
  • Like
  • Love
Reactions: Judge, YUCATAN.DANCE, 3nails1cross and 3 others
GuestofHonor

GuestofHonor

Active member
Trusted Uploader
Jan 30, 2021
194
223
43
47
United Arab Emirates
smilecare.ae
YUCATAN.DANCE said:
Hey everyone, recently i've found some issues which is redirect issue and my WP index.php files got autometically modified and there are some some .php codes inserted.
I've scanned and fixed it with Wordfence but it got infected over and over.
how to prevent infection from happening again????
Click to expand...
have you changed wordfence scan settings to high sensitivity to check all folder ?!
you already have a shell on your website which allows the hacker to modify files any time or he already has access to your cPanel
and my advise is to find a hosting that have
Code: 
imunify 360
installed to block the scripts from executing
 
Last edited:
  • Love
Reactions: YUCATAN.DANCE
GuestofHonor

GuestofHonor

Active member
Trusted Uploader
Jan 30, 2021
194
223
43
47
United Arab Emirates
smilecare.ae
YUCATAN.DANCE said:
those are the examples of infected files.
Click to expand...
This is shell installer
1- use wordfence scan with the high sensitivity setting to scan all directories
2- change your cPanel password and check if new users has been added to the database or wordpress users.
3- check if file manager plugin has been installed on ur wordpress.
4- use a hosting provider that have
Code: 
imunify 360 extention
installed to block the execution of infected scripts and shells
5- Always use 2FA authentication option in wordfence
6- always Disable Code Execution for Uploads directory from wordfence all options.
7- disable user registration (if your website doesn't require it).
8- disable file editing in wordpress by adding this code to wp-config.php
Code: 
define( 'DISALLOW_FILE_EDIT', true );
9- protect wp-config.php by moving it outside public_html
10- check the steps here

I hope this helps
 
Last edited:
  • Like
  • Love
Reactions: amqmp, dbbuda, viralgag and 3 others
C

counselme

Member
Feb 28, 2020
60
9
8
Custom B said:
..even worse :ROFLMAO:
Click to expand...
what do you mean by "even worse"?

You think Babiato is a place people or anyone just uploads whatever they like without those files being scanned first?

I use many plugins from here and have never had this issue. Please, drop it.
 
GuestofHonor

GuestofHonor

Active member
Trusted Uploader
Jan 30, 2021
194
223
43
47
United Arab Emirates
smilecare.ae
mrmin said:
Is there an effective way to prevent it?
Click to expand...
sometimes your website is not the one originally hacked but another on the same server which gives the hacker the ability to access all websites on that server.
use good hosting provider and clean your files and scan your files using imunify 360 and wordfence(high sensitivity scan)
imunify will stop the execution of any malicious script and delete it
 
Last edited:
  • Like
Reactions: mrmin, counselme and YUCATAN.DANCE
Custom B

Custom B

Active member
Feb 29, 2020
137
123
43
counselme said:
what do you mean by "even worse"?

You think Babiato is a place people or anyone just uploads whatever they like without those files being scanned first?

I use many plugins from here and have never had this issue. Please, drop it.
Click to expand...
dude chill..:sneaky:
 
  • Haha
Reactions: counselme
C

counselme

Member
Feb 28, 2020
60
9
8
YUCATAN.DANCE said:
been using babiato resources from 2018 bro. never experienced such kind of weird problem. but it happened recently. must be some plugin causing the issue.

THERE IS ONE THING I WOULD LIKE TO SUGGEST, I'VEE SEEN RANDOM PEOPLE (NEWLY CREATED ID) SHARE RESOURCES IN COMMENTS WITHOUT ANY PROPER BACKGROUND CHECK OF THAT PLUGIN/THEMES. I THINK THAT NEEDS TO BE PROHIBITED FOR THE SAFETY OF OTHERS.
Click to expand...
I have been using Babiato too but issues like is not because of the files you downloaded from Babiato. There are many ways to hack your application (WordPress mostly).

I can join hands in helping you fix it if you don't mind. I've done it for different clients before and all websites work well now.

It takes time but I sure make it work.
 
  • Love
Reactions: YUCATAN.DANCE
You must log in or register to reply here.

Similar threads

teknobu
  • Locked
How do they make the Envato file download site?
Replies
1
Views
97
General Discussion
comcpa2022
comcpa2022
cteq1
Everytime I connect to site I get Adbloc pop up. I have disabled and removed it
Replies
2
Views
358
General Discussion
vinu
vinu
yokina.dev
want to create own video host site | PHP
Replies
1
Views
331
General Discussion
ukgamer
U
herrada
Need a basic Logo For a Free Guest Posting Site
Replies
7
Views
563
General Discussion
herrada
herrada
S
Wordpress Site hacked
Replies
7
Views
691
General Discussion
mi2brich
mi2brich

Latest posts

Forum statistics

Threads
69,206
Messages
908,337
Members
236,859
Latest member
funnylogs

Share this page

Share this page

About us

  • Our community has been around for many years and pride ourselves on offering unbiased, critical discussion among people of all different backgrounds. We are working every day to make sure our community is one of the best.

Quick Navigation

Forums Contact us

User Menu

Login
Community platform by XenForo © 2010-2022 XenForo Ltd.
Top Bottom