wolstech

The invite should have already arrived. If you didn't receive it, check your spam bin. Let us know if you need us to resend it.

A file called public_html.zip and a database backup mad2017_db.sql.gz have been placed in your home folder. Please note that the public_html.zip is missing the WordPress installation as well as the contents of the s and d folder due to malware infection. In addition, you should validate your htaccess files to make sure they are correct. You can now sign in here: https://tommy.heliohost.org:2083/ (username should be mad2018, this form does not accept email addresses as usernames) and your domain is already working. If you need further assistance, please let me know.

Working on it, I have to move you to Tommy first...Note that you won't be able to sign in until I finish the move. Once I'm done, you'll see a zip file and database in your home folder that you can use to restore your content.

174.0.62.16 Tommy 2018-07-31 03:33:40 20 in the last 3600 secs lfd: Failed IMAP login CA/Canada/S0106a84e3fe22193.cg.shawcable.net You still have a mail client somewhere that's trying to log in with invalid credentials. Cell phone perhaps? Unblocked again.

Unblocked.

Not dead, it just changed IP addresses so the monitor thinks its dead.

You should be able to delete it here: http://www.heliohost.org/classic/support/scripts/delete If not, please let me know and I'll delete it for you.

Weird. Probably due to the ddos fix we implemented recently...the entire Johnny server moved to a new IP address. The account has been manually deleted. Go ahead and sign up when registrations open.

It failed yet again, this time because you forgot the .com on it. mad2018 www.formyvillage 157.44.142.167 Tommy madapuram 2018-07-30 18:35:47 (XID ed8s85) The system cannot accept formyvillage as a domain name (domain name must have a valid TLD label). You need to type the full domain, WITHOUT the www, and WITH the .com. Try yet again please, and verify you can sign in afterwards.

They need to be removed from the old account. I'll do this when I get to a pc next, or another admin can do so if they see this.

You can delete your account here: http://heliohost.org/classic/support/scripts/delete The heliohost.org/login page has a bad habit of not working reliably for Johnny users due to load.

The files have been placed in your home folder. Please note that the contents of one of the subfolders was infected and has been discarded. In addition, the users table of thejohnnyt_wp738 database was truncated before export due to malicious user accounts being present.

Yeah, WP just doesn't care anymore. Their product is garbage security-wise, but they can't be bothered to do anything about it because they know people will use it anyway. When this issue first hit last week, there were people reporting it and they were being met with active denial by WP...

The account mad2018 failed its creation due to domain leftovers from your old one. The domain formyvillage.com has been cleaned up. Lets try this one more time Try creating the exact same account again with the invite I just sent.

It should be your domain.heliohost.org/cgi-bin/gettingUsers.py, The bad news is I don't know why your account doesn't work. We've been having DDoS attacks lately, but you're already on the other IP that's not being it. It looks like Apache may have died. Lets have Krydos look at this for you.

The IP doesn't matter, the validation actually looks for the NS record with our nameservers in it, not what it resolves to. I'll just park it as an Alias for you to get you back up and running a little faster so you don't need to jump through the hoops. Give me a few minutes and I'll get that done for you. You may need to clear your cache. Go ahead and request Tomcat again, that usually installs in under a day, so you won't need to wait too long there. You can use PHP scripts if you want, just don't use WordPress itself (i.e. pick another product). WordPress is infamous for terrible security.

Depends which files you need. I can't provide access due to possible phishing (which is what the hacker was ultimately planning to use the compromised accounts for...) and I can't provide any PHP files because they're infected, but if there's images/databases/etc. you need, I may be able to fetch those for you and drop them in the home folder of your new account.

The domain was still on the old account so it failed to create. I sent a new invite. Go ahead and try signing up again now.

Quota updated.

You shouldn't need to validate since you should be using the link in the email I sent you earlier to sign up. I've resent the email. It usually goes to spam on gmail, so check in there for it. Click the link inside to sign up on Tommy.

I deleted the entirety of the news folder, the s folder, and the d folder, as well as the .htaccess in public_html. Nothing else was infected. What's your new account's username? I'll drop the files and the mad2017_db database in the home folder for you.

This account has a compromised CMS installation that has been affected by the recent AnonymousFox hack and cannot be unsuspended. An invitation will be sent to you shortly so you can create a new account. Please restore your data using a backup. The data from your old account cannot be recovered or returned to you due to the possibility of the account having been used for Phishing. As a reminder, when selecting a CMS, we highly recommend that users not use WordPress. WP and it's extensions are notorious for having security issues such as the one you (and everyone else on Tommy) experienced, and it has the worst security track record of any CMS out there. Using a different program will help prevent this from happening again.

There's also malware everywhere...you wouldn't be able to reuse the files without infecting yourself again. Please use your most recent backup instead. If you don't have one, I can generally retrieve databases and things like robots.txt or htaccess for you (except for WordPress). I cannot recover any PHP files.

What's the username of your new account? I'll drop the listing file in the home folder for you.

The robots.txt from your old public_html has been moved to your new account's public_html folder.