wolstech

Try it again now

The invite should have already arrived. If you didn't receive it, check your spam bin. Let us know if you need us to resend it.

Your message's content was lost during delivery, likely because it contained images or attachments. Our system does not accept messages containing images or files. If you need to send an image or file, please provide a link instead of attaching it directly to the email. Please resend your request without images or attachments, or post on our forums for assistance.

A file called public_html.zip and a database backup mad2017_db.sql.gz have been placed in your home folder. Please note that the public_html.zip is missing the WordPress installation as well as the contents of the s and d folder due to malware infection. In addition, you should validate your htaccess files to make sure they are correct. You can now sign in here: https://tommy.heliohost.org:2083/ (username should be mad2018, this form does not accept email addresses as usernames) and your domain is already working. If you need further assistance, please let me know.

Working on it, I have to move you to Tommy first...Note that you won't be able to sign in until I finish the move. Once I'm done, you'll see a zip file and database in your home folder that you can use to restore your content.

174.0.62.16 Tommy 2018-07-31 03:33:40 20 in the last 3600 secs lfd: Failed IMAP login CA/Canada/S0106a84e3fe22193.cg.shawcable.net You still have a mail client somewhere that's trying to log in with invalid credentials. Cell phone perhaps? Unblocked again.

Unblocked.

Not dead, it just changed IP addresses so the monitor thinks its dead.

You should be able to delete it here: http://www.heliohost.org/classic/support/scripts/delete If not, please let me know and I'll delete it for you.

Weird. Probably due to the ddos fix we implemented recently...the entire Johnny server moved to a new IP address. The account has been manually deleted. Go ahead and sign up when registrations open.

It failed yet again, this time because you forgot the .com on it. mad2018 www.formyvillage 157.44.142.167 Tommy madapuram 2018-07-30 18:35:47 (XID ed8s85) The system cannot accept formyvillage as a domain name (domain name must have a valid TLD label). You need to type the full domain, WITHOUT the www, and WITH the .com. Try yet again please, and verify you can sign in afterwards.

They need to be removed from the old account. I'll do this when I get to a pc next, or another admin can do so if they see this.

You can delete your account here: http://heliohost.org/classic/support/scripts/delete The heliohost.org/login page has a bad habit of not working reliably for Johnny users due to load.

The files have been placed in your home folder. Please note that the contents of one of the subfolders was infected and has been discarded. In addition, the users table of thejohnnyt_wp738 database was truncated before export due to malicious user accounts being present.

Yeah, WP just doesn't care anymore. Their product is garbage security-wise, but they can't be bothered to do anything about it because they know people will use it anyway. When this issue first hit last week, there were people reporting it and they were being met with active denial by WP...

Invite resent. Also, be sure to note your username because you will need it to sign in. Also, you will need to post your username, server (Tommy), and domain if you need any form of support from us, so it should not be considered private information.

The account mad2018 failed its creation due to domain leftovers from your old one. The domain formyvillage.com has been cleaned up. Lets try this one more time Try creating the exact same account again with the invite I just sent.

It should be your domain.heliohost.org/cgi-bin/gettingUsers.py, The bad news is I don't know why your account doesn't work. We've been having DDoS attacks lately, but you're already on the other IP that's not being it. It looks like Apache may have died. Lets have Krydos look at this for you.

The IP doesn't matter, the validation actually looks for the NS record with our nameservers in it, not what it resolves to. I'll just park it as an Alias for you to get you back up and running a little faster so you don't need to jump through the hoops. Give me a few minutes and I'll get that done for you. You may need to clear your cache. Go ahead and request Tomcat again, that usually installs in under a day, so you won't need to wait too long there. You can use PHP scripts if you want, just don't use WordPress itself (i.e. pick another product). WordPress is infamous for terrible security.

Depends which files you need. I can't provide access due to possible phishing (which is what the hacker was ultimately planning to use the compromised accounts for...) and I can't provide any PHP files because they're infected, but if there's images/databases/etc. you need, I may be able to fetch those for you and drop them in the home folder of your new account.

Yes you can use a domain you got somewhere else provided you're able to change its DNS settings. You need to change your domain's name servers to ns1.heliohost.org and ns2.heliohost.org, then add the domain to your account here and it will work.

The domain was still on the old account so it failed to create. I sent a new invite. Go ahead and try signing up again now.

Quota updated.

You shouldn't need to validate since you should be using the link in the email I sent you earlier to sign up. I've resent the email. It usually goes to spam on gmail, so check in there for it. Click the link inside to sign up on Tommy.

I deleted the entirety of the news folder, the s folder, and the d folder, as well as the .htaccess in public_html. Nothing else was infected. What's your new account's username? I'll drop the files and the mad2017_db database in the home folder for you.