.htaccess files compromised

Viewing 3 replies - 1 through 3 (of 3 total)
  • pronl

    (@pronl)

    9 years, 3 months ago

    @thompsonprint

    Did you add the iTSec plugin AFTER being hacked ?
    Often people (i’m not saying you did) install a security plugin when it is too late …

    Also note some of the iTSec plugin features write changes to the .htaccess file.

    Thread Starter thompsonprint

    (@thompsonprint)

    9 years, 3 months ago

    No, I added the IthemeSec at creation of the site, first thing on a fresh install.

    I have gotten these types of notices, a few weeks after the site being live. Does iThemeSec add files or changes remotely? Is this them or hackers?

    File Modified File Hash
    .htaccess Tuesday December 27th, 2016 at 9:44 am UTC 857402bf7ca0801cd223ac75c0df74c4

    pronl

    (@pronl)

    9 years, 3 months ago

    @thompsonprint

    Does iThemeSec add files or changes remotely? Is this them or hackers?

    No, the iTSec plugin does not add or change files on its own.
    I have too little info to say whether this is a hack issue.

    Have you run a Sucuri Malware Scan ?

    Are there any unexplained/malicious entries added to the .htaccess file ?

    Are there any other plugins installed that write changes to the .htaccess file ?

    What other files are being changed ? WordPress Core files ?
    If so what changes are made in those files ?

    A good assessment can only be made with more info provided 😉

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘.htaccess files compromised’ is closed to new replies.