mike2019
Forum Replies Created
-
Forum: Plugins
In reply to: [Wordfence Security - Firewall, Malware Scan, and Login Security] Pharma HackHallo,
ja, deine Antwort hilft mir sehr.
Ich betreibe 5 Webseiten. 4 mit WordPress davon 3 in Wien, 1 in Deutschland.
Die 3 WordPress Seiten in Wien waren alle betroffen. Ich hatte zuerst das Theme oder ein Plugin in Verdacht und habe den php-Code und die Datenbank durchsucht, aber nichts gefunden.
Ich habe den Schadcode h?ndisch gel?scht und hoffe, dass sowas nicht mehr vorkommt.LG
MikeForum: Plugins
In reply to: [Wordfence Security - Firewall, Malware Scan, and Login Security] Pharma HackHi Brisch,
i have the same problem.
Did you find find out how it’s possible?
———-
Hallo,
ich habe das selbe Problem.
Hast du die Ursache herausgefunden?Nachtrag:
Ich bin beim selben Hoster. Wahrscheinlich lag es daran.lg
Mike2019- This reply was modified 5 years, 2 months ago by mike2019.
Forum: Fixing WordPress
In reply to: My website was hacked…Now, after the attack, I know all the defenses.
But would not it be better if xmlrpc is disabled by default and the user can turn it on (after a warning window)?Forum: Fixing WordPress
In reply to: My website was hacked…You’re right. I have no proof. But a few pointers:
After the attack, I installed a security plugin that logs all suspicious requests.
In 1 week there are 27000 suspicious requests.
Not everything for xmlrpc, of course.
But here is an example, they tried to log in via xmlrpc.
https://ibb.co/ga9yndAnother hint is, if you ask google “xmlrpc remove”, there are 650000 results.
And the results are not: “everything OK… xmlrpc is safe…”
https://ibb.co/g1iAYJ- This reply was modified 6 years, 5 months ago by mike2019.
Forum: Fixing WordPress
In reply to: My website was hacked…This is part of the monthly statistics website.
https://ibb.co/etFJJJNow I’ve found out that they’ve been working on this hack for more than a year.
I think they inject the xmlrpc with data in the POST method.The wp-cron may also be a risk file.
Maybe they can read some information.Forum: Fixing WordPress
In reply to: My website was hacked…Many thanks,
If you read my Thread Start carefully, you can find out:
I have already cleaned my page.
I already know how the hacker destroyed my site.For you my questions are “Futile arguments”.
For me it’s very serious questions.Forum: Fixing WordPress
In reply to: My website was hacked…Jan, I can not follow your logic.
Not all WordPress pages have been hacked. Right. But:
Almost all hacked websites are WordPress websites.Look here:
https://www.zone-h.org/archivestrange