empty comments

  • I got an empty comment by “Anonymous”, “approved”, with no text, the 27 of May 2023. I could send a screenshot, but i don’t see an attach button here.

    I am concerned, was my site hacked? How can i check? Does any tool or plugin exist, to diagnose the site status? (integrity of thje database, etc…).

    Should a qualified WordPress technician like to investigate, i can provide a temporary user account.

    Thanks,

    Adriano Autino

    The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)
  • Thread Starter adriano49

    (@adriano49)

    Hi, thanks for your kind offer.

    btw, i am also experiencing some other strange behaviours. E.g. this morning i was working on the website, and i haven’t made anything on appearence.themes.

    Yet suddendly my active theme changed (from my activated Bento to Twenty Twentythree). I tried to reactivate Bento, but it was not possible.

    Only after logging out and logging in again to wordpress dashboard, my site was back to normal working.

    btw, i have run a “Check and repair” action from my Plesk interface and i got “The storage engine for the table doesn’t support check” on the table 71bc1f_wfls_role_counts (belonging to the Wordfence plugin).

    After uninstalling the above plugin no issues were detected by “Check and repair”.

    However, sorry for being a bit paranoid (considering the above issues), how can i be sure that you are not an hacker yourself? I will create a temporary user for you, after getting a proof that you’re a good guy ??

    Best

    Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    @binal I’ve deleted your offer to login to your user’s site. I’m am 100% sure you mean well but please never ask for credentials on these forums.

    Now for the why: The internet is a wonderful place full of very nice people and a few very bad ones. I’m sure everyone here is very nice however, by giving some ones keys to your house you are trusting they wont steal anything. Likewise the person who takes the keys is now responsible for the house FOREVER.

    If something was to go wrong, then you the author may well legally become liable for damages, which they would not normally have been as their software is provided without warranty.

    Please be aware that repeatedly asking for credentials will result in us escalating this to the plugins team.

    It’s never necessary to do that. Here’s why.

    There are many ways to get information you need and accessing the user’s site is not one of them. That’s going too far.

    • Ask for a link to the https://pastebin.com/ or https://gist.github.com log of the user’s web server error log.
    • Ask the user to create and post a link to their phpinfo(); output.
    • Ask the user to install the Health Check plugin and get the data that way.
    • Walk the user through enabling WP_DEBUG and how to log that output to a file and how to share that file.
    • Walk the user through basic troubleshooting steps such and disabling all other plugins, clear their cache and cookies and try again.
    • Ask the user for the step-by-step on how they can reproduce the problem.

    You get the idea.

    Volunteer support is not easy. But these forums need to a safe place for all users, experienced or new. Accessing their system that way is a short cut that will get you into real trouble in these forums.

    Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    @adriano49 Please don’t offer to send or post logon credentials on these forums: https://www.ads-software.com/support/guidelines#the-bad-stuff

    It is not OK to offer, enter, or send site credentials on these forums. Thanks for your cooperation.

    If you need to hire someone to work on your site, we recommend using jobs.wordpress.net.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘empty comments’ is closed to new replies.