1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

My site is hacked by !M4D.T0X!C, How to recover it

Discussion in 'Black Hat SEO' started by tabish8612, May 7, 2013.

  1. tabish8612

    tabish8612 Power Member

    Joined:
    Sep 13, 2009
    Messages:
    504
    Likes Received:
    109
    Occupation:
    Online Marketing
    Location:
    In your home...COMPUTER
    Today, my site is hacked by !M4D.T0X!C but I did not know how to repair my site. Anyone please give me idea from where to start? Thanks
     
  2. nethead01

    nethead01 Regular Member

    Joined:
    Sep 21, 2009
    Messages:
    424
    Likes Received:
    229
    most hosting companies keep a back up of your site weekly, check to see if they do and if so have them restore the back up

    if not then hire me and ill take care of it :)

    also for future prevention make sure if using wordpress keep it updated and install some security
     
  3. cyrsss

    cyrsss Regular Member

    Joined:
    Jul 10, 2010
    Messages:
    396
    Likes Received:
    64
    Occupation:
    SEO Analyst
    Location:
    SKY
    Simply Edit htaccess File !!!

    at bottom you will see malware code simple remove and also set permissions too

    You need to find 3 .htaccess files in plugins,theme and main

    And change Password Too ASAP!
     
  4. extremeboy

    extremeboy Jr. VIP Jr. VIP

    Joined:
    Jul 8, 2010
    Messages:
    2,993
    Likes Received:
    648
    Occupation:
    World Best RANK Tracker SERPCloud.com
    Home Page:
    My suggestion:

    Back it up with OLD backup

    Then change password with complex password includeded Small,capital letters with numbers and symbol it's need hundreds of year to decode so un BrutForceable of Sql DB if you have and All arease of your site.

    Update your theme if you are using Free or Paid and if you are using Hacked Theme then you will be hacked again some security holes are in it.

    If you are using Wordpress install Security plugins.

    Then you will be okay hopefully it helps you ;)
     
  5. tabish8612

    tabish8612 Power Member

    Joined:
    Sep 13, 2009
    Messages:
    504
    Likes Received:
    109
    Occupation:
    Online Marketing
    Location:
    In your home...COMPUTER
    my problem is solved
    I contact my hosting support (namecheap) and they install the backup in less than 5 hrs. I am using old version of wordpress and using custom theme which I make from artiseer.
     
  6. umerjutt00

    umerjutt00 Jr. VIP Jr. VIP Premium Member

    Joined:
    Oct 28, 2011
    Messages:
    3,649
    Likes Received:
    1,908
    Occupation:
    Ninja
    Now upgrade to the latest version of Wordpress. Install the limit login plugin and hide my WP and a few other security plugins and make sure you have a backup of your site.
     
  7. Moosey

    Moosey Senior Member

    Joined:
    Dec 5, 2011
    Messages:
    1,043
    Likes Received:
    747
    Most of the time they edit your HTACCESS file because it is left open like a gaping hole. Remove the malicious code and change the file permissions so it doesn't happen again. If you need any assistance please feel free to PM me, I am very experienced with these type of matters.
     
  8. Scritty

    Scritty Elite Member Premium Member

    Joined:
    May 1, 2010
    Messages:
    2,807
    Likes Received:
    4,496
    Occupation:
    Affiliate Marketer
    Location:
    UK
    Home Page:
    Artisteer won't have had any effect really. Anyone can make a wordpress theme (it's open source) Juast about every wordpress theme you find has been made by som individual in his or her bedroom. Artisteer just makes the process a whole lot easier.

    Scritt
     
  9. tabish8612

    tabish8612 Power Member

    Joined:
    Sep 13, 2009
    Messages:
    504
    Likes Received:
    109
    Occupation:
    Online Marketing
    Location:
    In your home...COMPUTER
    @Scritty: ya the main reason is I am lazy in updating wordpress. Now I learned my lesson
     
  10. bendutchman

    bendutchman Junior Member

    Joined:
    Jun 1, 2012
    Messages:
    131
    Likes Received:
    41
    Occupation:
    genetic engineer
    Location:
    House, Road House
    I recommend that you use [strongpasswordgenerator.com] and use 100 characters for a super strong password.
     
  11. xpleet

    xpleet Regular Member

    Joined:
    Jan 18, 2010
    Messages:
    377
    Likes Received:
    327
    Location:
    Morocco
    Don't forget to update all your plugins also.
     
  12. Gogol

    Gogol Elite Member

    Joined:
    Sep 10, 2010
    Messages:
    3,066
    Likes Received:
    2,872
    Gender:
    Male
    Is it a wordpress blog?
     
  13. tabish8612

    tabish8612 Power Member

    Joined:
    Sep 13, 2009
    Messages:
    504
    Likes Received:
    109
    Occupation:
    Online Marketing
    Location:
    In your home...COMPUTER
    @g0g0l: Oh my GOD, when I say I'm lazy in updating wordpress then does it mean I have joomla website?
     
  14. Wister_fr

    Wister_fr Registered Member

    Joined:
    Sep 6, 2012
    Messages:
    62
    Likes Received:
    23
    Location:
    Internet
    You need backups to reinstall your website.

    What kind of "hack" was it?

    I am pretty sure there are lots of backdoors on your server now (in the whole server not only in your www directory).

    If you had only one website on this server, just format it and use your backups to reinstall your website; else delete the directory in which your website was (that is not a 100% safe method) and reinstall it with your backup.

    For WP:
    Install these plugins and keep them always updated:
    - Better WP Security
    - BulletProof Security (pro version is cheap and really usefull if you have a dedicated server)
    - Antivirus

    After installing and configuring them change .htaccess chmod to 444.

    EDIT: Of course: Change all your passwords ;)
     
    Last edited: May 8, 2013
  15. JustUs

    JustUs Power Member

    Joined:
    May 6, 2012
    Messages:
    609
    Likes Received:
    452
    I would not call that lazy. I would call that derelict. Wordpress has a one button update in the admin panel.
     
  16. Gogol

    Gogol Elite Member

    Joined:
    Sep 10, 2010
    Messages:
    3,066
    Likes Received:
    2,872
    Gender:
    Male
    Ah sorry. Did not go through the whole post. Yeah, wordpress has some undisclosed vulnerability for sure. I can make it hack-proof but not for free. Contact me if interested.

    Or, wait, you could go through my post on WordPress security:
    http://www.blackhatworld.com/blackh...log-hackproof-complete-guide.html#post4821645
     
  17. antichrist

    antichrist Jr. VIP Jr. VIP

    Joined:
    Aug 21, 2012
    Messages:
    1,725
    Likes Received:
    2,076
    Location:
    On top of the world!
    Just did a quick search on him, he at least installs a pretty sweet intro with music!