iframe

Sure, sh*t happens.

Having elementor and elementor-pro busted production site just a few hours ago, I downgraded elementor to 3.24.0 by using WP CLI. There is no way to downgrade elementor-pro by using WP CLI, such an escape isn’t permitted, the developers just bodyguard their paid version, it’s understandable.

I ended up asking a sysadmin about the latest backup.

But there is a question which I don’t get.

As they said the latest version 3.24.2 addressed that problem, right?

But it was exactly combination of 3.24.2 and pro 3.24.1 when the site lost its appearance.

oh, I see.

The theme is question doesn’t have wp_kses()? function.

Thank you!

Thank you!

Sure, it reads nothing related to this matter.

On Windows, tracert sends ICMP Echo Request packets, rather than the UDP packets traceroute sends by default.

We already know they drop ICMP packets.

Even their top-level domain wordfence.com can’t be pinged, tried from US and Europe.

PING wordfence.com (54.69.165.150) 56(84) bytes of data.
^C
— wordfence.com ping statistics —
12 packets transmitted, 0 received, 100% packet loss, time 10999ms

In other words, ping won’t work.

Try Curl.
I don’t have that error you guys got.
My curl reads:

curl noc1.wordfence.com
{“errorMsg”:”Wordfence API error: Your site did not send an API key when contacting the Wordfence servers.”}

Just curl from the concole and compare with mine.

Find Wordfence All Options – Wordfence Global Option – check Delete Wordfence tables and data on deactivation.

Delete Wordfence tables and data on deactivation
By default, if you disable Wordfence, the database tables will remain in place with their data. This is to ensure that if you accidentally or temporarily disable Wordfence, you won’t lose your configuration or the data you have accumulated like the live traffic data.

If you would like to remove all Wordfence data when you deactivate the plugin, check this box and when you disable the plugin all tables, entries in the WordPress options table, scheduled jobs and any other stored data associated with Wordfence will be removed.

If you then reactivate Wordfence, it will appear as if it has been activated on your website for the first time

SEM means Spam Eating Monkey.
As of today, your domain listed there 4 times.
https://spameatingmonkey.com/lookup/digitalhipb.com

FTP to you site, change wordfence folder name to some different name so you would be able to login bypassing wordfence.
While you are logged in, FTP new wordfence folder name back to wordfence.
Reload the browser, click through Wordfence – Firewall – Blocking.
Check the reason your username got blocked, it could be expired already so you would need to log out, log in and get blocked again.
After you are able to read the reason, if it’s blocked by WordFence Network, as they name it, your problem is related to SEM listing.

Talk to you host. Sometimes even a mail router could be misconfigured, that’s a server-side issue. You have no control over it anyway. Create a ticket.

If you are listed in the ‘spammers’ database, it is because you, your machine, or a previous user of the address sent unsolicited bulk, commercial, religious or political email to any of the spam traps.

Your domain is listed as sending spam. You have to fix that issue.

https://hetrixtools.com/blacklist-check/digitalhipb.com

A decade ago I was so naive as you are today. I was arguing with moderators saying that’s no good. They kept saying a strong password is a king. Finally they marked my previous account as a spammer.
Don’t start a fight here. You will lose.

“An admin user with the username zdemon was created outside of WordPress.”

They penetrated mysql database, I have seen that. They don’t even need to login into phpmyadmin, I have seen that as well.
There are many vectors nowadays to get hacked, some of them are vulnerable php version. See the latest php version and compare with your host’s php.
First off, change your database credentials.
You can change your wp-config.php file permission as well to get it harder to access. Keep in mind, some plugins would stop working, check them out.
I would say you are a mark already, the best way is to change your environment, meaning to find a better host.

From the web:
About Apple touch icons
Similar to the Favicon, the apple-touch-icon.png is a file used for a web page icon on the Apple iPhone, iPod Touch, and iPad. When someone bookmarks your web page or adds your web page to their home screen this icon is used. If this file is not found these Apple products will use the screen shot of the web page, which often looks like no more than a white square.

You are welcome.
That’s in your root folder, I can see it as
https://aljabal.be/robots.txt