Skip to main content Screen Reader Website Version

HotOpponents Hack

We have seen this one a few times coming from WordPress but we have also seen it in Google Analytics code or simply in a header.php file. HotOpponents is a simple redirect script but really digs down and makes roots for itself throughout your website files and database.  Here’s how we got rid of it in WordPress. Of course, you can always call us and we can clean this for you!

If you’re on a shared server, ask us about dedicated server support: we get you on a super-secure dedicated server for about the same cost as an insecure, slow, shared server (most common setup).

  1. Locate your wp-config.php file and note the database name.
  2. Open PHPMyAdmin and locate the database.
  3. Open SQL Statements and insert the following

    Remember to replace your table prefix here with the one in your database.
    Also, take notice of the GET variables in the URL, sometimes the tp=2 is different. We’ve seen zzz=3 and jp=88
  4.  That should remove the hotopponents script from your database.
  5. Replace ALL wordpress files with a clean version
  6. Next, log in via FTP and quarantine your plugins and theme files.
    1. download all files and search for malware manually – in obvious spots – header.php, index, etc…
    2. Scan your site with https://sitecheck.sucuri.net/ 
    3. Remove any malware. Many times it’s just better to flush plugins and reinstall them all, then just overwrite your theme files with the latest version or a backup.
  7. Download and install WordFence and do a site scan
  8. Finally, update all your passwords (account, (S)FTP, WordPress)
  9. Backup your site.

Nasty little hack/redirect script from some ridiculously infantile folks.

 

More Web Design Blog Content

What You Should be Asking

When hiring a developer, many people don’t know what questions they should be asking – if they knew, then they’d probably be doing the work themselves, right? First and foremost – ask for examples of previous projects. The surefire way to weed out the novices is to look

Learning how to code?

We get questions all the time about how we started doing all this. Where did we learn to code? How on earth does any of that make sense? Some people are interested in learning for themselves. It’s easy to get started, especially in this day and age. Back

Guardian Association Management Has A New Website

Pleased to introduce the new Guardian Association Management website. This is a clean minimalistic layout that funnels users directly into services and payments pages. Gainesville GAM came to us needing something up in a timely manner, clean, modern, and looked great on mobile. We were happy to oblige.

Better Than Notepad: Notepad ++

We love this little program. It’s a replacement for Notepad called Notepad++. It’s like notepad on steroids. Lots of  new, useful functions – essentially, everything Microsoft neglected to put into their product,; open source, once again, has provided a better alternative. Easy find/replace functions, even in files so

Is DIY Website Design Costing You More Than You Think?

Brought to you by Livewire – Professional Web Design and SEO Services Building your own website sounds like a budget-friendly way to get your business online. Platforms like Wix, Squarespace, and WordPress make it look easy. Just drag, drop, publish… right? But here’s the catch: DIY web design

Domain names other than .com a good idea?

Top Level Domains (TLDs), which are suffixes, are the final part of URLs. Although.com is well-known, there are more than 1,000 TLD choices available; however, not all of them are open to the general public. Prior to TLDs, IP addresses were used to visit websites, however this proved