Plugin or virus?

  • Resolved tfcgomy

    (@tfcgomy)


    1 year, 2 months ago

    Hello,

    just a short question, because I am a little bit in sorrow (because my website was hacked some months ago).

    I got the note from NinjaFirwall, that “it has detected the following activity on your account:

    -Plugin uploaded
    -Name: aioseoextensions.zip
    -User: xxx (administrator)
    -Date: September 12, 2023 @ 02:50:42 +0200″

    I’m sure that it was not me, who uploaded the plugin. And I would be happy if someone knew what happened here.

    Thank you very much in advance!!!

    Petra

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)
  • Plugin Author nintechnet

    (@nintechnet)

    Someone logged in as an administrator and uploaded that file. If it wasn’t you, consider scanning your site immediately : https://www.ads-software.com/plugins/ninjascanner/

    Also:

    • Change your admin password.
    • Make sure no new admin accounts were created.
    • Look for a “/wp-content/plugins/aioseoextensions/” (or similar) folder .
    • Check the firewall’s log and search for that admin in it. Do you see it?
    • Consider enabling the “NinjaFirewall > Login Protection” and set it to “Username + Password” and “Always enabled”.
Viewing 1 replies (of 1 total)
  • The topic ‘Plugin or virus?’ is closed to new replies.