Hi Guys,
Had the site hacked last month,and the hosting company informed me about it and i sorted the corrupt files out, but my site has stopped working and woocomeerce has un-installed itself and deleted all my products and customer details… basically destroyed the site and business from this site.
I contacted my hosting company who came back with this.
>>>>>
I’m just looking into this for you now, looks like the malicious files were in your account since the earliest backup we have.
I’m just rescanning the account for you now to see what’s what and I’ll also see if we have backup from after you cleared it.
Just FYI, I’ve just been dealing with another customer with a very similar issue – basically it boils down to the presence of the revslider plugin – there is clearly a vulnerability with this plugin that is being actively abused.
The only fix I know of at the moment is to remove that plugin from your install otherwise it will be repeatedly hacked.
Looks like the malware scan I just ran came back clear, so I’d suggest restoring our backup from 3rd December for you – then locking to your IP whilst you sort out removing the revslider plugin and updating everything.
>>>>>
I need to lock the IP for the website so only my machine can use it, but do not want to do it until speaking with you guys.
I have tried to delete the slider plugin but it wont allow it.
I need to act fast on this before they try another attack.
regards
Mark
