magefix

After you login as administrator, go to https://igreenside.com/laundry-basket-series-2/ & hit the “Edit Page” link. Then you may edit the Permalink from “laundry-basket-series-2” to “laundry-basket-series”. If “laundry-basket-series” is not available, try “greenside-laundry-basket-series”.

To bypass Cloudflare, you’ll need to edit your local hosts file & point the domain directly to the server’s IP address: https://www.hostinger.com/tutorials/how-to-edit-hosts-file

First, you’ll need access to the current database to export data so it’s important to address the “Error establishing a database connection” error. What’s your site URL?

The following PNG file should be optimized /wp-content/uploads/2024/01/AfriClan-Banner.png since it’s almost 2MB in size. Try WebP instead. I haven’t noticed any other display issues.

Hi there, start by getting more info about the internal server error. Switch the website to the debugging mode state & review the debug.log file in the wp-content directory: https://www.ads-software.com/documentation/article/debugging-in-wordpress/

Do you have any neighbor sites in the same account? If that’s the case, each site must be cleaned & isolated.
Restoring the visible modified files will help but it’s not sufficient. Many infected files go undetected by malware scanners.

Make sure you’re editing the right database & pay attention to the table prefix. Table prefix and database details needs to match wp-config.php settings.

Hi! Dealing with fake orders is tricky, you could get the IP info & block the entire network. https://ipinfo.io/

Download IP address lists grouped by network provider (ASN) https://github.com/ipverse/asn-ip or https://www.maxmind.com/en/accounts/current/geoip/downloads

How to Block IP Address with .htaccess https://htaccessbook.com/block-ip-address/

Hi,

The italfun website appears to be affected also by SEO spam. https://imgur.com/8gkN2uT

Try to separate the sites & execute PHP scripts as user, following the Directadmin, cPanel WHM model. Also you may consider disabling exec PHP functions, including exec(), passthru(), shell_exec(), system() functions.

home/site1 , home/site2, etc

If all the sites are managed by the same UNIX user, cross-site contamination risk is high.

As I understand you don’t have the budget for the cleanup, I’m able to offer free support for a single website. Feel free to reach me & I’ll help you to clear the malware.

If all sites are under the same IONOS shared hosting or contract, cross-site contamination risk is high. It’s better to disable public access, separate the sites & perform cleanup for each.

I remember the last compromised site with .oti files I saw had also malicious plugins added – make sure to review the structure under /plugins/ and /themes/ folders.

After you save your main .htaccess file reset its permission to 444. Look for any suspicious PHP files inside the /uploads/ folder. Review the cPanel cron jobs & get the latest plugins and theme versions from a reliable source.

Before installing a security plugin perform a site backup, starting with the database, wp-config file, plugins, themes & uploads folder.

Try to get a scan report from Hostgator and review each site component manually – plugins, themes & core files. Update everything, then use Wordfence.

To prevent hackers from getting in the dashboard, add the following code at the top of your .htaccess file:

<Files wp-login.php>
        order deny,allow
        Deny from all
  
# whitelist Your own IP address
allow from xx.xxx.xx.xx
  
</Files>

To stop new plugin installation & file edits, add the following lines in your wp-config.php file – its not a permanent fix, but it will prevent any attacker to upload content.

define('DISALLOW_FILE_MODS', true);
define('DISALLOW_FILE_EDIT', true);

A temporary solution I found was to disable reCAPTCHA on WPForms. This way both plugins will coexist.
Plugins:
WPForms Lite ver. 1.8.0.2
reCaptcha Pro by BestWebSoft ver. 1.70