Skip to main content Screen Reader Website Version

HotOpponents Hack

We have seen this one a few times coming from WordPress but we have also seen it in Google Analytics code or simply in a header.php file. HotOpponents is a simple redirect script but really digs down and makes roots for itself throughout your website files and database.  Here’s how we got rid of it in WordPress. Of course, you can always call us and we can clean this for you!

If you’re on a shared server, ask us about dedicated server support: we get you on a super-secure dedicated server for about the same cost as an insecure, slow, shared server (most common setup).

  1. Locate your wp-config.php file and note the database name.
  2. Open PHPMyAdmin and locate the database.
  3. Open SQL Statements and insert the following

    Remember to replace your table prefix here with the one in your database.
    Also, take notice of the GET variables in the URL, sometimes the tp=2 is different. We’ve seen zzz=3 and jp=88
  4.  That should remove the hotopponents script from your database.
  5. Replace ALL wordpress files with a clean version
  6. Next, log in via FTP and quarantine your plugins and theme files.
    1. download all files and search for malware manually – in obvious spots – header.php, index, etc…
    2. Scan your site with https://sitecheck.sucuri.net/ 
    3. Remove any malware. Many times it’s just better to flush plugins and reinstall them all, then just overwrite your theme files with the latest version or a backup.
  7. Download and install WordFence and do a site scan
  8. Finally, update all your passwords (account, (S)FTP, WordPress)
  9. Backup your site.

Nasty little hack/redirect script from some ridiculously infantile folks.

 

More Web Design Blog Content

Howe Development Has a New Website

Website is complete on Howe Development. Now for phase 2 – integrating a simply, custom CMS so they can update content on parts of the site. No need for wordpress – we can easily do a custom solution for those cases where a client only needs to control

WordPress: Capturing Post Author Meta

An easy one here from your local Gainesville Web Designer: How to retreive the author information from a post in the WordPress loop. This assumes you’re in the loop, of course. $meta_field= get_the_author_meta( ‘your_meta’ );   Badda-bing badda-boom. You’re done. It really is that simple. Just use get_the_author_meta,

A Quick Way To Kill Your Facebook Marketing

Facebook is a powerful tool. With millions upon millions of reachable users it is the social media powerhouse. Sharing content is incredibly easy and businesses can so easily engage potential customers that many businesses are putting it to work for them. There are, in fact, many ways to

The Low Down on Net Neutrality

What they heck is it? Most people don’t know it past the slogan .. and that’s what it is, a slogan. Net neutrality does not mean ‘left alone”, there’s nothing laissez faire about it. It does mean oversight, more oversight of the Internet than currently exists. The advocating

Offline linking

This is a profound point. A lot of linking takes place offline. Sounds weird but many great links sprout from the personal relationships you make as a business. Noteworthy links can be found at your local chamber of commerce just like any Hotfrog or elocal directory site. “This

Website Redesign Launch: Precon Tanks Gets a Modern Upgrade

We’re excited to announce the launch of the brand-new website for Precon Tanks — a leading manufacturer of precast concrete tanks and systems for the wastewater and stormwater industries. With decades of expertise and a reputation for quality and dependability, Precon needed a website that reflected their technical