SOS ! i need help ! my site is getting HACKED LIVE now !!!

[winpnx]

please anyone who know how to protect websites give me a call on whatsapp, or facebook , my website using wordpress is getting Hacked by .htaccess injection !! i did restore it from a backup and 2 minute later it's giving the .htaccess BAD REDIRECT ... please help guy !!! @Babak

 

[AlexRazor]

please anyone who know how to protect websites give me a call on whatsapp, or facebook , my website using wordpress is getting Hacked by .htaccess injection !! i did restore it from a backup and 2 minute later it's giving the .htaccess BAD REDIRECT ... please help guy !!! @Babak

Restore it with defult htaccess

 

[devilrob]

install wordfence

 

[devilrob]

write me if you are still connected

 

[lachhab]

install wordfence man https://babia.to/resources/wordfence-wordpress-security-plugin.2699/

 

[devilrob]

if that same

 

[winpnx]

ok i will do it now , i will restore it again and install wordfence , how to stop it from occuring ? because i have 7 wordpress directories and they managed to MODIFY the ROOT .htaccess which have no WP install on it , any idea ...??

 

[funguy]

Change cPanel password. Install any security plugin and activate firewall.

 

[vijay1]

Run maldat scan.

 

[vijay1]

Check for the plugin called Hello ad.
Actually search in plugin directory and disable it Don't uninstall now I'll tell you how to clean fully if there is

 

[vijay1]

And if you have installed this plugin uninstall it right away.

File Manager

file manager provides you ability to edit, delete, upload, download, copy and paste files and folders.

wordpress.org

Hackers are exploiting a critical flaw affecting >350,000 WordPress sites

Flaw is in File Manager, a plugin with more than 700,000 users; 52% are affected.

www.google.com

 

[winpnx]

yes i have that file manager sh** installed!

 

[vijay1]

yes i have that file manager sh** installed!

Uninstall it right away, clean install WordPress and then install backup in safe mode, if there is file manager is then unistall it and clean all files and database tables related to it.
Don't forget to check "hello ad" plugin it's always hidden just search it in installed plugin.
And disable it. Best luck.
Inform me for any queries

 

[winpnx]

Uninstall it right away, clean install WordPress and then install backup in safe mode, if there is file manager is then unistall it and clean all files and database tables related to it.
Don't forget to check "hello ad" plugin it's always hidden just search it in installed plugin.
And disable it. Best luck.
Inform me for any queries

i deleted the file-manager plugin and installed wordfence now i need to wait for some hours and then i will reinstall the FULL SERVER BACK-UP and do it again just for the sake of staying safe

 

[vijay1]

i deleted the file-manager plugin and installed wordfence now i need to wait for some hours and then i will reinstall the FULL SERVER BACK-UP and do it again just for the sake of staying safe

Ohk hope your website will live soon

 

[winpnx]

thank youuuuu , you saved my assssss bro

 

[inux2004]

wow.. awesome. i am glad to hear that

 

[vijay1]

thank youuuuu , you saved my assssss bro

Never mind.n sharing is caring (tricks n ......)

 

[vijay1]

I

thank youuuuu , you saved my assssss bro

Could you please share the error log and debug log if available. The modified .htaccess file(PM Me). I just want to study it.

 

[Websinhvien]

Does your site allow other people to log in?

If you are the only one to use;

This is my method

- Use 2-layer security.
- Write-protect rule = .htaccess
- File password protection = .htpasswd
- Change password cPanel
- install wordfence