Skip to main content Screen Reader Website Version

HotOpponents Hack

We have seen this one a few times coming from WordPress but we have also seen it in Google Analytics code or simply in a header.php file. HotOpponents is a simple redirect script but really digs down and makes roots for itself throughout your website files and database.  Here’s how we got rid of it in WordPress. Of course, you can always call us and we can clean this for you!

If you’re on a shared server, ask us about dedicated server support: we get you on a super-secure dedicated server for about the same cost as an insecure, slow, shared server (most common setup).

  1. Locate your wp-config.php file and note the database name.
  2. Open PHPMyAdmin and locate the database.
  3. Open SQL Statements and insert the following

    Remember to replace your table prefix here with the one in your database.
    Also, take notice of the GET variables in the URL, sometimes the tp=2 is different. We’ve seen zzz=3 and jp=88
  4.  That should remove the hotopponents script from your database.
  5. Replace ALL wordpress files with a clean version
  6. Next, log in via FTP and quarantine your plugins and theme files.
    1. download all files and search for malware manually – in obvious spots – header.php, index, etc…
    2. Scan your site with https://sitecheck.sucuri.net/ 
    3. Remove any malware. Many times it’s just better to flush plugins and reinstall them all, then just overwrite your theme files with the latest version or a backup.
  7. Download and install WordFence and do a site scan
  8. Finally, update all your passwords (account, (S)FTP, WordPress)
  9. Backup your site.

Nasty little hack/redirect script from some ridiculously infantile folks.

 

More Web Design Blog Content

Review: PHP Live Chat ★★★★

4 Stars for this chat system from GNTStudio. It’s quite useful and very easy to install. We’re actually planning to use it on our own website we like it so much. They lose one star because we had to modify a bit too much to get things to

Messaging When Switching From iPhone to Droid

Sneaky little issue pops up when you move away from iphone. Other iphone users that previously texted you won’t be able to text you the same way once you switch. This is because when you both were using iphones, the messaging system was not the typical SMS, but

Howe Development Has a New Website

Website is complete on Howe Development. Now for phase 2 – integrating a simply, custom CMS so they can update content on parts of the site. No need for wordpress – we can easily do a custom solution for those cases where a client only needs to control

Thomas Jackson Updates

John Pailing and I have been hard at work upgrading what is already an incredible website. We have made several layout changes and are playing with a few ideas that will really add to the depth and relevance of the site. It is truly an honor to be

ADA Compliance

ADA compliance refers to the compliance of websites with the Americans with Disabilities Act, a federal law in the United States that requires businesses and organizations to make their goods and services accessible to people with disabilities. In the context of websites, this means ensuring that individuals with

New Projects

We’re excited to have new projects coming in on a regular basis. On the menu for the next few weeks are some great opportunities to expand our portfolio and our reach. Lake Butler is electing a new Sheriff soon and we’ll be creating one of the candidate’s websites.