wolstech

Ricky is overdue for a rebuild. He is extremely outdated on just about everything. Until that server gets rebuilt, you'll need to consider moving to tommy or Johnny. Both have much more recent software installed.

High Wordpress load again. This is your last chance, please delete Wordpress immediately and find different software to use. If this happens again after this, you might not be unsuspended. Every time your site causes load like this, it's causing downtime for thousands of other websites. Unsuspended.

He’s using his cPanel account, so it should be auto granted. The cPanel account has full access to all databases it owns. The first thing to try when this happens is to change your password.

PM sent to user.

I'll set this up shortly.

Your account was suspended because Wordpress is causing too much load. I have unsuspended your account, but please try to limit the load you put on our servers as it slows down not only your site, but the sites of all other HelioHost users sharing your server. This is really common for Wordpress. It can cause massive amounts of load even if you're hardly getting any traffic to your site. Wordpress is also incredibly insecure and very easy to hack. We see Wordpress accounts get hacked all the time and usually the hacker sets up a phishing site on your domain. We strongly recommend using any software other than Wordpress. Something that might help is this simply static Wordpress plugin. It will speed up your site, reduce the load you cause, and reduce your chance of getting hacked. If you try it let us know how it worked out for you. If you insist on using Wordpress you might want to consider purchasing a VPS instead. VPS hosting gives you an entire virtual server to yourself, including no load limits, a dedicated IP address, and full root access. Wordpress sites load relatively slowly on our shared hosting, but they will be much faster on a VPS.

That account is not suspended.

Some email addresses can't receive mail from our servers, that provider is probably one of them if you didn't get the backup or sign up emails. I did find an old tommy account called nemo14 for that email address though, that has backups available. Do you have a different email address I can send an invite to so you can make a new account?

The account nemo2020 does not exist.

It was for failed IMAP logins. Please check your mail client settings. Unblocked.

Parked.

The program in the "SchoolIS" folder appears it was responsible for the issue since the malware was found hiding in there, but there's no guarantee they didn't just hide it there. We have no way of actually knowing how they got in. Unfortunately we can't provide any data from an account affected like this because of the potential that other malware or stolen information could be hiding in it.

Whatever was in the SchoolIS folder got hacked. Don't reinstall that software. Malware was uploaded into the hacked software's folder, and that malware was in the process of compromising other users on the server to extract database credentials when the server auto-banned the account. If you're curious this sort of attack (and the consequences of it when successful), search our forums for "AnonymousFox". We had an attacker successfully pull it off just over 2 years ago, and it resulted in almost every Wordpress installation on Tommy being banned for phishing and spam. It primarily attacks WP, but also can hit Joomla, WHMCS, IPB, and a few others. Here's a basic description of it: https://www.helionet.org/index/topic/33983-what-was-the-anonymousfox-hack/ (the malware on your account was the script used to conduct the initial sweep and grab database credentials, it appears the server banned it before the attacker could do anything further). Our attack was over 2 years ago, but AnonymousFox hasn't gone away and was seen in the wild as recently as just a few months ago: https://www.brightvessel.com/anonymous-fox-wordpress-5-5-hack-should-i-be-concerned/

What was the username of the old account? Also, did you delete the account, or just abandon it? If you deleted it, we won't have any backups or other data to recover. Abandoned accounts get archived and can be recovered.

Yep. Krydos has posted numbers on here before...we had a site running something else pushing thousands of views and causing virtually no load, while a comparable WP site caused more load in like 5 page views than the first one did with its thousands. We also see WP get suspended when it isn't even being used (things like it's cron can get it suspended).

You can add error_reporting(E_ALL); to the top of your script and it will show every little thing. The errors will also log to the error_log file in the same folder as the script.

That account was hacked and used for illegal activity, and as a result cannot be unsuspended nor backed up. An invite has been sent to the email address on file to create a new account.

Krydos has to set this up for you. You can't do it yourself.

While not the easiest, you can do all but the contact form using plain HTML and CSS if you don't mind working directly in HTML. Also, a script to email you the results of a contact form isn't terribly hard to make in PHP. Joomla was a pretty popular alternative to WP, but it's become a bit bloated these days (though still not as bad as WP). It's hard for me to speak to public alternatives since I ended up building my own CMS (granted it needs an overhaul due to the dated look of my site, it still works and isn't slow or hacked 8 years later...)

Unarchive already running. Looks like someone else started this already...

That account is not archived. EDIT: Just realized Krydos is also on at the moment, he probably unarchived it already.

Wordpress is doing that, not the server. You have to reconfigure it for the new domain. I renamed index.php to index.old for you and it's no longer redirecting. You'll need to rename it back once you reconfigure WP. Word of advice: Don't use WordPress. It's the leading cause of performance issues, load suspensions, hacked accounts, and even accidental phishing bans. Literally any other software is better.

Unarchived.

It will never install a certificate for him because he forced SSL in .htaccess (AutoSSL requires the site be able to accept a plain HTTP connection). I deleted his htaccess file and it immediately issued a cert. If he really wants to require SSL, either exceptions need to be included to make AutoSSL work properly, or he can do it in PHP instead. I see the cert in his cPanel now as well, so as soon as Apache restarts this should work for him (he may need to clear his cache). Also, word of advice: Dump WordPress. If there's any one program that will run terribly and get you suspended, it's WP. Literally any other product is better.

I've never heard of it, but pretty much anything is better than WP, so definitely give it a shot. WP is junk internally, insomuch that it's our number one cause of performance issues, high load suspensions, even accidental phishing bans (when it gets hacked, and it almost certainly will considering how insecure it is).