Hello,

I have checked the screenshot you provided and scanned your account. I found a few malicious
or infected files present in your account. I have uploaded a file ‘scanlog.txt' within the '/stats'
directory of your account which contains the full list of infected files.

Please take necessary steps to clean up your account. Alternatively, you can go for SiteLock
911 which will help you in removing any existing malware and fix any existing security
vulnerabilities. To learn more about SiteLock, please go to:
https://www.fatcow.com/product/sitelock . If you would like to speak to one of our SiteLock
support representatives, you can call at Toll Free: 855-378-6200, International: +1 (415) 390-
2500 .

Also, we have given below some tips to safeguard your website:

- generate a strong password combination for account, FTP, database and mailboxes.
- scan local computer with good antivirus, antispyware programs and clean bad programs.
- keep the software up-to-date with vendors/developers, and seek their support/forums for any
known vulnerabilities/fixes/workarounds available.

Additionally, if you are using any old scripts in your website, they may enable remote attackers
to exploit the outdated code in an effort to alter the contents of a specific file. Once the website
is activated, please make sure that all of your scripts and open source applications are of the
latest versions available and include all available patches to protect against any known
vulnerabilities.

To learn more about reasons for account getting hacked and the ways to prevent it, please visit
the KB link: https://www.fatcow.com/help/article/online-security-hacking-and-malware .

Once action has been taken, please reply to this email and we will review the account. We
would recommend you to remove the malware from infected files or replace the infected files
with cleaner copy from your local backup as soon as possible.

I would also suggest that you refer to the following article: https://community.sophos.com/kb/en-
us/119440 for more details on why the website loads the error message (as in the screenshot
you provided) and the action you can take to fix it.

If you have any further questions, please update this ticket at:
https://www1.ipage.com/controlpanel/supportconsole.html#tickets .

Sincerely,

Brenda D
Senior Technical Specialist
Flag report T2_T3_docs Urgent Sheet TOS_Tracker

06112239
05981458 check check check
05939546 - BlueHost
05743933
16410178
16411105
16437541 maps

I would suggest that you clear browser cache and check the website functionality from your end.
To know more about how to clear browser cache, please refer to the following article:
https://www.ipage.com/help/article/clearing-a-web-browsers-cache .

You can refer to the knowledge base link https://www.ipage.com/help/article/general-how-to-

take-a-screen-shot for details about how to take a screenshot .

Closing:
Please reply to this email with the requested information or contact our Chat Support at
https://www.property.com/chat/ for further assistance.

If you have further queries, please feel free to chat with us at: https://www1.ipage.com/chat/ .

If you have any further questions, please update this ticket at:
https://www1.ipage.com/controlpanel/supportconsole.html#tickets .

Survey:
Are you satisfied with my help? We are eager to hear your feedback. Please answer a quick
survey by clicking on the link that follows this response.

SSL:
I apologize for the inconvenience this has caused you. I tried installing SSL certificate for the
domain: binaryoptionschannel.com , however, I received an error. I will have to hand this ticket
over to one of our senior technical specialists to investigate further on this issue and install it for
for the domain. I will also hand over all my findings to that specialist. You should be hearing
from them within 24-48 hours.

SSL installation for favodigital.com failed. Displays 'Retry' link in the control panel. Please install
SSL certificate for the domain.

SSL MX not with us:

I apologize for the inconvenience caused to you. Since the automated SSL installation process
has failed, we would need to install SSL manually for the domain: felhofer-cpa.com . I also see
that the MX records of the domain are pointing to external servers. In order to complete the
manual installation process, you would need to create a mailbox, named: hostmaster@felhofer-
cpa.com at your mail service provider. Please confirm once you have created the mailbox, so
that we can initiate the process once again and send an SSL installation approval email to
hostmaster@felhofer-cpa.com for you to approve. The installation process would complete once
you approve that email.

Also, since our SSL service providers have deprecated the 3 years SSL terms, we can install
SSL certificate only for 2 years for the domain: felhofer-cpa.com . The amount paid for the
additional one year will be refunded to your account.

Please confirm if we may proceed with the following:

- Cancel the current SSL order for 3 years.
- Process a new SSL order for 2 years.
- Refund the amount paid for the additional one year to your account.

Once you confirm these changes, we will proceed with the refund and SSL installation process.

Escalation:
I apologize for the inconvenience this has caused you. I am able to replicate the database error
at http://kdindustrial.com/ . I will have to hand this ticket over to one of our senior technical
specialists to investigate further on this issue. I will also hand over all my findings to that
specialist. You should be hearing from them within 24-48 hours.

Reported Symptoms: *
What you tried: *

Force SSL:
However, since there are a few insecure URLs in your website, the website is failing to load
green padlock. You would need to replace the insecure (http) URL with secure URL, that is, with
https, for the website to load with https. You can make use of plugins such as ‘Better Search’ to
find the insecure URLs and replace them with green padlock. You would also need to change
the Home and Site URL for your website. You can go to Settings in your WordPress dashboard
--> 'General' and set the 'WordPress Address (URL)' and 'Site Address (URL)' as
https://www.islandsupadventures.com . This would update the home and site URL. Once it’s
done, you can use plugin such as WP Force SSL to redirect the HTTP traffic to HTTPS.

We have a team of Professional Services experts who can assist you with the complete URL
update to HTTPS for your WordPress website. The service fee is $100 . If you wish to use this
service, please confirm.

I was able to duplicate the issue with difference in fonts when accessing the website for
homecookingny.com with HTTPS. If you are still noticing the issue after the URL update, I would
request you to contact the theme vendor to check if there's any sort of compatibility issue with
accessing the website through their theme at HTTPS. They will be able to confirm the root
cause and assist you to get it fixed.

IP Blacklist repeatedly:
You are using a dynamic IP address. In this situation, the IP address might have been assigned
to some other subscriber of your ISP who is a hacker or has an infected machine. If this is the
case then:
- Restart your modem / router to see if you get a new public IP address. If you get a new one,
you should be able to connect to the FTP server.
- Request your ISP for a static IP address for your local machine so that you don't have to
experience this issue again.

Unable to access website (IP blocked):

I completely understand how frustrating it must be to not be able to access your website. I have
checked your IP address: 24.95.174.50 and could see that it is blacklisted on our server.
Generally we block the IP addresses on our servers only when any unauthorized/suspicious
activity is noticed, from the IP address. Since the provided IP address appears to be a shared
one, it could be possible that there was a suspicious activity from some other user and caused
the IP address to be blocked on our server. I suggest that you contact your ISP to further
investigate on this and take necessary actions to restrict the suspicious activities.

Once the action has been taken to restrict the suspicious activities, please get back to us, so
that we can unblock the IP address.

Configure Email Client:

I was able to send / receive emails by configuring your mailbox admin@a-little-wedding-
garden.com in an email client. I have checked the error message which you have provided us. It
seems that you are using incorrect email client settings or your email client profile is corrupted.
Please make sure to enter the complete mailbox name in the ‘Username’ field and the correct
mailbox password in the ‘Password’ field and try to re-configure your mailbox in email client by
referring to the article https://www.startlogic.com/help/article/email-client-setup and try sending /
receiving emails after temporarily disabling the Antivirus / Firewall program in your system. If the
issue persists, please get back to us with the screenshots of the error message that you receive
and all the settings which you have entered in your email client. You can refer to the knowledge
base link https://www.startlogic.com/help/article/general-how-to-take-a-screen-shot in order to
learn how to take screenshots.

First Scan:
In a recent scan for your account, we have discovered malware present in your account and
some malicious scripts that found to be sending Spam emails. In order to prevent further
abuse/spam, we have suspended your account. We have uploaded a file ‘websitescan.txt'
within the '/stats' directory of your account which contains the full list of infected files.
Please take necessary steps to clean up your account. Alternatively, you can go for SiteLock
911 which will help you in removing any existing malware and fix any existing security
vulnerabilities. To learn more about SiteLock, please go to:
https://www.ipower.com/product/sitelock . If you would like to speak to one of our SiteLock
support representatives, you can call at Toll Free: 855-378-6200, International: +1 (415) 390-
2500 .

Also, we have given below some tips to safeguard your website:

- generate a strong password combination for account, FTP, database and mailboxes.
- scan local computer with good antivirus, antispyware programs and clean bad programs.
- keep the software up-to-date with vendors/developers, and seek their support/forums for any
known vulnerabilities/fixes/workarounds available.

Additionally, if you are using any old scripts in your website, they may enable remote attackers
to exploit the outdated code in an effort to alter the contents of a specific file. Once the website
is activated, please make sure that all of your scripts and open source applications are of the
latest versions available and include all available patches to protect against any known
vulnerabilities.

To learn more about reasons for account getting hacked and the ways to
prevent it, please visit the KB link: https://www.ipower.com/help/article/online-security-hacking-
and-malware .

Once action has been taken, please reply to this email and we will review the account.

We would recommend you to remove the malwares from infected files or replace the infected
files with cleaner copy from your local backup as soon as possible. Please note that your site
will need to be completely updated and hardened against further attacks. Repeated
compromises may result in permanent suspension of your account. It is in the best interest of
our customers that we take security very seriously. Thank you for understanding our firm stance
on this matter.

Rescanned Account:
Thank you for your attention to this issue. I have removed the suspension on your account. Now
the website at http://creativeillustrated.com/ is loading fine. If you are still unable to access your
web files, please try clearing your browser's cache, and try again. If the website is not working
as expected then please re-upload a clean copy of website files from your local backup and
check the website functionality.

Now that your account is active again, it might be a good time to review your applications to
make sure they are up to date. This goes for plugins and themes as well.

You can refer to the knowledgebase link https://www.bizland.com/help/article/online-security-

hacking-and-malware in order to learn how to prevent your account from getting hacked.

NOC Scan:
When we conducted a routine scan for your account 'halleysonsghcom', we found infected files.
We have uploaded a file 'websitescan.txt' within the '/stats' directory of your account which
contains the full list of
infected files.

We have temporarily suspended your website, to avoid issues for your website visitors and also
to avoid the impact on your website as well as our server’s reputation. Please take necessary
steps to clean up your account. Alternatively, you can go for SiteLock 911 which will help you in
removing any existing malware and fix any existing security vulnerabilities. To learn more about
SiteLock, please go to: https://www.ipage.com/product/sitelock . If you would like to speak to
one of our SiteLock support representatives, you can call at Toll Free: 855-378-6200,
International: +1 (415) 390-2500 .

Also, we have given below some tips to safeguard your website:

- generate a strong password combination for account, FTP, database and mailboxes.

- scan local computer with good antivirus, antispyware programs and clean bad programs.

- keep the software up-to-date with vendors/developers, and seek their

support/forums for any known vulnerabilities/fixes/workarounds
available.

Additionally, if you are using any old scripts in your website, they may enable remote attackers
to exploit the outdated code in an effort to alter the contents of a specific file. Once the website
is activated, please make sure that all of your scripts and open source applications are of the
latest versions available and include all available patches to protect against any known
vulnerabilities.

To learn more about reasons for account getting hacked and the ways to
prevent it, please visit the KB link: https://www.ipage.com/help/article/online-security-hacking-
and-malware .

Once action has been taken, please reply to this email and we will review the account.

Website Backup and restore Tool:

We often come across such situation wherein, customers unintentionally lose their data while
making changes to their website. To protect your website against such situations, you can opt
for the tool ‘Website Backup & Restore’. This tool provides a simple interface using which you
can easily restore any deleted/corrupted files/databases backed up from the past 14 days. You
can learn more about this tool at: https://shop.ipage.com/website-backup .
Bounce back from System Administrator:
I have checked the bounce back message which you have provided us. The message was not
generated by our servers and your account logs indicate that your emails were not blocked on
our server. It seems that your network provider has limited the emails from your network /
system and sent the message. Please contact your network provider regarding this issue. Your
emails on our server will not be blocked if you follow these limitations:
https://www.powweb.com/help/article/email-management-email-storage-and-sending-limits .

Catch-All:
The catch-all email address is used to forward emails that are sent to any non-existing email
address. We suggest that no external or internal email address be set as mail delivery or
forward-to for the Catch-All email address. This is to avoid major ISPs blocking our email
servers for spam. Since emails sent to non-existing mailbox are received here, the Catch-All
email address would receive many spam messages. If you set an external email address as
forward-to for the Catch-All email address, the spam messages will be forwarded to the external
email servers. Even though the spam is forwarded from our email servers, the external email
server would consider the spam to have originated from our servers and would block our email
servers.

Undelivered Email:
please get back to us with the following details of the undelivered email:

From email address.

To email address.
Date, Time and Time zone.
Subject line.

HTML coded Signature:

I apologize for the inconvenience caused to you. I checked your account and could see that you
are using AtMail as your Webmail Client. Since html coded signature is not supported in AtMail,
I would suggest that you change the Webmail client to RoundCube or SquirrlMail where you
would have an option to add the html coded signature. You can access the following link to
switch your Webmail Client: https://www.ipower.com/controlpanel/emailpack/tool_settings.bml .

Roundcube link:
https://emailmg.ipage.com/roundcube/

Squirrel mail link:

https://email.fatcow.com/sqmail/src/login.php

Check DB backup:
ls -ld /mouse/*/ipg46/ss_dbname_5o173aoj7j
ls -ld /mouse-bos/*/ipg37/ss_dbname_n2cgci1i6e
Www Redirect Code:
RewriteEngine on
RewriteCond %{HTTP_HOST} ^www\.ascentiq\.co [NC]
RewriteRule ^(.*)$ https://ascentiq.co/$1 [L,R=301]

RewriteEngine on
RewriteCond %{HTTP_HOST} ^example.com [NC]
RewriteRule ^(.*)$ http://www.example.com/$1 [L,R=301,NC]

Scan Backup:
/usr/bin/clamdscan -i backup_path

DB Script:
<?php
$link = mysqli_connect('localhost', 'db_username', 'db_password','db_name');
if (!$link) {
die('Could not connect: ' . mysqli_connect_error());
}
echo 'Connected successfully';
?>

Symlink:
ls -ld accountuname
ln -s symlink accountuname
Symlink: /hermes/bosweb01/b***/username

When a PHP application is installed, it by default takes the Symlink path(starting with
/hermes/... ) instead of the storage path(/home/users/web/...). Both paths do work fine, however,
'home' path is the fixed one and it wont change. While, the hermes path is regularly changed
based on server load and other situations. Thus sometimes the 'hermes' path wont work in
scripts, as the original location for that path is changed. So, it is recommended that you use this
path: /home/users/web/b2550/moo.jsportorg (for your account).

Scan Account:
/home/logins/diya-bdsouza/scan/ms ipg.azinadscom
ps -ef | grep clamav
/home/logins/diya-bdsouza/scan/mvlog ipg.azinadscom
stats>>scan

Delete leading and trailing details:

:%s/:.*FOUND//
:%s/\/home\/users\/web\/b2383\/glo.ghostrider//
Import DB:
/usr/bin/mysql -h wolkifycom.fatcowmysql.com -u supp0rt -p example_staging <
/hermes/walnaweb04a/b800/moo.wolkifycom/wordpress_g66ik2iml6.sql

supp@rt123

Export DB:
/usr/bin/mysqldump -h mysqlhostname -u dbusername -p dbname > Path of the file

Query limit:
A website would display ‘max_user_connections' error when the query limit set for the account
is exceeded. Query limit is the maximum number of database actions performed in one hour by
a specific user. Note that a user can have multiple concurrent MySQL connections, in which
case the sum of all database actions for all connections cannot exceed the given limit. The
maximum number of database queries per user is 75,000/hr.

The hourly query limit is 75,000 queries per website. When this gets exceeded, the relevant
website and the database will be down. This measure is put in place to prevent the MySQL
server from getting overloaded with queries. We suggest you to have your website developer to
optimize the database queries and make sure that all open database connections are closed
properly to prevent the query limit from getting exceeded.
If you wish, you can purchase additional MySQL query for your account. Following are the
details:

$20.00/month MySQL Query Limits 150000 queries / hr

$60.00/quarter MySQL Query Limits 150000 queries / hr
$240.00/year MySQL Query Limits 150000 queries / hr

Home and Site URL:

I apologize for the inconvenience caused to you. I was able to replicate the 500 error while
accessing: http://wendyleetaylor.com/wp-admin . I also checked the database for the website
and could see that the Home and Site URL are updated to
http://www.wendyleetaylor.com/wendyleetay . This is the reason the admin panel loads with
error. You would either need to correct the home and site URL to
http://www.wendyleetaylor.com/ or update the domain pointers to point to ‘Home Directory’ to fix
this.

For details on how to update the home and site URL, please follow the steps as mentioned in
the WordPress support page at: http://codex.wordpress.org/Changing_The_Site_URL . An
easier method to update the Site URL and Home URL is through the phpMyAdmin. Instructions
for this are given in
http://codex.wordpress.org/Changing_The_Site_URL#Changing_the_URL_directly_in_the_data
base .
To know more about how to update the domain pointers, please refer to the following
knowledge base article: http://www.fatcow.com/help/article/domain-management-how-to-
update-domain-pointers .

We also have a team of Professional Services experts who can assist you with the home and
site URL update for your WordPress website. The service fee is $100 . If you wish to use this
service, please confirm.

GSuite email client configuration:

The mailbox tonyas@eliteeducationglobal.com is a Google Apps mailbox. Please follow the
steps below to configure your Google Apps mailbox in an email client:

Step 1: Enable POP for the mailbox through Gmail interface

1. Settings -> POP/IMAP Download
2. Enable POP for all mail
3. Click on Save Changes

Step 2: Edit/Add new email account in email client

Use the following settings:

POP: pop.gmail.com and Port 995
SMTP: smtp.gmail.com and Port 465
Outgoing server requires Authentication

Step 3: Use the advance settings and update the Port number since Gmail uses SSL.

Reset file and folder permission:

To reset all folders permission to 755
find . -name "*" -type d -print -exec chmod 755 {} \;
To reset all files permission to 644
find . -name "*" -type f -print -exec chmod 644 {} \;
Mailbox permissions:
find . -type d -exec chmod 775 {} \;

TTS:
We are currently aware that a small portion of our customers are unable to access Mojo
Marketplace via Control Panel. Our engineering team is aware of the issue and working towards
a resolution. We apologize for the inconvenience and appreciate your patience while we resolve
this issue.

session.save_path:
4;/hermes/phpsessions

Our IP blocked:
We apologize that it has taken longer than usual to get back to you. Your received this bounce
back because our outgoing mail server IP was blacklisted. We have a team in place that
monitors our mailout server IPs for its reputation and sends report to us. Our NOC team rotates
the blocked IPs automatically and that should resolve any blocks our servers may have. Please
check the email functionality from your end.

As a shared hosting company with many customers using our email servers, we are sometimes
falsely accused of contributing to spam, and therefore are blacklisted. In order to minimize the
impact of IP address block we are rotating the server addresses along with several methods.

Check Our IP blocked: (if still active)

Reverse lookup (nslookup) IP, get server name
grep bosmailout09 /opt/exim/conf/master/outgoing.interfaces

Spam Score Reset:

I apologize for the inconvenience caused to you. I checked the email logs for the details you
provided and could see that, the email was dropped on our email servers, since some content in
the email body was marked as spam. We have reset the spam score for this, you should be
able to send out emails now.

Fatcow has employed Spam Scanning Service to monitor all inbound and outbound emails
being sent through FatCow's servers. The filters used for scanning the emails are updated daily
and based on the crowd-based feedback, would determine if the sender's domain is reputable
or not. It is based on this information that the email users are identified safe or unsafe and the
emails are filtered accordingly. For more details on our email spam scanning services, please
refer to the following knowledge base article: https://www.fatcow.com/help/article/email-
management-spam-scanning-service .

FTP IP Blacklisted:
For the system IP address from where you've connected the FTP, there were had several failed
attempts in 1 hour, from your IP 123.240.186.83 , which is a suspicious activity. So, we've
blocked FTP access to the IP address. As part of an ongoing effort to increase security for our
customers, the Network Operations team has implemented additional monitoring of ‘failed’ FTP
logins.

We need proper explanation from you as to why this happened, in order to remove the FTP
block for your IP. So, in order to remove the FTP block for your IP, please get back to us with
the following information:
1. Why exactly there had so many failed log in attempts?
2. Is this is a shared IP address?
3. Is there any FTP connection test active in your PC ? If yes, then please disable it.

I also request you to change the FileZilla settings and then get back to us to remove the IP from
blacklist.
Settings:
Connection -> Reconnection Settings:
Maximum number of retries: 3
Delay between failed login attempts: 300

Transfers -> Concurrent transfers

Maximum simultaneous transfers: 5

Once you've confirmed the following settings, please let us know and we will remove the IP from
blacklist.

DB Concurrent Connections:
I checked your website http://newsecuador.ec/ and was able to replicate the error: "User
newse_www already has more than 'max_user_connections' active connections". A website
would display 'max_user_connections' error when the maximum number of concurrent
connections allowed per user is exceeded. On our platform the maximum concurrent MySQL
connections per user is 10. If you exceed the limit, you will not be able to connect the database.
Too Many Connections can be caused by either a lot of simultaneous connections or by old
connections not being released soon enough. There are some simple changes you can make to
your PHP code and your MySQL settings to prevent both.
You can refer the URL: http://blog.thoughtlabs.com/blog/2008/02/18/dealing-with-mysql-too-
many-connections-error for this.
*************************************************************************************************************
To prevent the server from running out of resources, it is important to limit the number of
concurrent connections to the MySQL server that can be established. The Concurrent
Connections dialog allows you to choose the expected usage of your server, and sets the limit
for concurrent connections accordingly. It is also possible to set the concurrent connection limit
manually.

To avoid this, the Open Source applications such as WordPress need to be updated regularly
with latest versions. I request you please deactivate all the plugins and check your website by
activating the plugins one-by-one. Also, please check once by activating different theme for your
website. Once you come to know which plugin or theme is causing the issue, please contact the
support team of the respective plugin or theme for further investigation and assistance from your
end.You can disable the plugins via phpMyAdmin:
1. Log into your control panel using your account username and password.
2. Click on 'MySQL Database' under 'Website'.
3. Click on the database where you have installed the WordPress.
4. Click on the login icon under 'Access phpMyAdmin', next to the user for which you wish to
connect.
5. Log into the database.
6. Click on the table 'wp_options' and then click on 'Browse'.
7. Edit the field 'active_plugins'.
8. Remove the plugin codes
9. Click on 'Go'.Additionally, I suggest you to consider hosting your website on VPS platform.
Since it is a growing website, hosting it on VPS platform will ensure great performance. You can
check the features and price of VPS servers at:

Force SSL (301 redirect https):

<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{SERVER_PORT} 80
RewriteRule ^(.*)$ https://.siwpc.net/$1 [R,L]
</IfModule>

Reject (drop: spam,virus): Yes, scan and Receive, and then revert
I have checked the email logs for the header which you have provided us. The emails were
getting rejected as spam by our spam filters. The spam settings which you had chosen at
https://www.startlogic.com/controlpanel/spamfilter.bml was not updated on our server, which
was causing the issue. I have re-updated the spam settings for your account to Save spam
messages in a separate directory for 7 days. Now you should receive all emails. Please cehck
the email functionality. Also, check your spam folder for emails.

DEFINE Codes:
define( 'WP_MEMORY_LIMIT', '256M' );

define('WP_DEBUG', true);

tar.gz compression:
tar -czf backup_17102018.tar.gz *

tar.gz uncompression:
gunzip my_tar_file.tar.gz
tar -xvpf my_tar_file.tar

Zip a file:
zip -r <filename>.zip <foldername>

Standard Redirect code:

<HTML> <HEAD><META HTTP-EQUIV=Refresh CONTENT="0;
url=https://www.creditmyrent.com/Enroll.aspx?rid=JWood3"></HEAD> </HTML>

Stealth Redirect code:

<html><HEAD>

</HEAD><FRAMESET border='0' ROWS='*,1'> <FRAME

SRC='https://www.creditmyrent.com/Enroll.aspx?rid=JWood3'><FRAME SRC='blank.html'>
</FRAMESET> </html>
Reset WordPress password:
As per our Security Policy, we do not reset the WordPress admin Password and give it to you.
You can always use the ‘Lost your password?’ link to retrieve the password. If you don’t have
access to the email address, then you can try resetting the password through phpMyAdmin, by
following in instructions in the following article: https://www.ipage.com/help/article/wordpress-
how-to-change-or-reset-your-admin-password . You would need to make changes in Database:
ss_dbname_4m6h244blm and Table: wp_jrks_users

You can also try this quick trick to reset the password without using phpMyAdmin. The steps to
follow are provided in the following WordPress support page:
https://codex.wordpress.org/User:MichaelH/Orphaned_Plugins_needing_Adoption/Emergency .
The WordPress for your domain: onepaidjob.com is installed in the following sub-directory:
/onepaidjob ..

In case none of the above methods work for you, you can opt for our Professional Services.
They can reset the password for your WordPress website at $50 . If you would like to use our
professional services, please confirm.

Backup Infected:
I apologize for the inconvenience caused to you. I checked the backup of the website files of
domain: warmcove.org. Since the files in the backup are also infected, we would not be able to
restore the files to your account.

I would suggest that you go for SiteLock 911 which will help you in removing any existing
malware and fix any existing security vulnerabilities. In case you have Site Lock 911 active for
your account, we will be able restore the website files from our backup, though they are
infected, since Site Lock would help you find and fix the infected content. To learn more about
SiteLock, please go to: https://www.dot5hosting.com/product/sitelock . If you would like to speak
to one of our SiteLock support representatives, you can call at Toll Free: 855-378-6200,
International: +1 (415) 390-2500 .

MX not resolving:
I apologize for the inconvenience caused to you. Since the MX records for your domain are not
resolving, you are not able to receive emails. I also see that the name servers of your domain
are pointing to: ns1.renewyourname.net and ns2.renewyourname.net . Since only the name
server provider would have access to update the DNS records, you would need to contact them
to update MX records for your domain: hkconsult.net to 66.96.140.186 and 66.96.140.187 .

SRS/SPF Reject:
The screenshot you provided, says that our SPF/SRS encoded header was rejected by the
recipient's email servers. When an email is sent out from our email server, the return-path is
SPF/SRS encoded so that SPF-checking 3rd party mail servers won't reject the email. SRS is a
mechanism for rewriting sender addresses when mails forwarded in such a way that mail
forwarding continues to work in an SPF compliant world. It appears that the email server at your
recipient service provider’s end is not able understand SPF/SRS encoding.

To resolve the issue, the e-mail administrator of your recipient service provider would have to
upgrade their email server to be able to understand SPF/SRS encoding. You may forward the
following links to the recipient’s email service provider: <http://spf.pobox.com/srs.html>,
http://spf.pobox.com .

Ion cube:
[Zend]
zend_extension = /usr/local/lib/ioncube/php5.5/ioncube/ioncube_loader_lin_5.5.so
zend_extension = /usr/local/lib/zend/php5.5/ZendGuardLoader.so
zend_extension = /usr/local/lib/zend/php5.5/opcache.so

Provide Backup of website:

I have created a backup of all the website files in your account and placed a compressed file:
backup_24032018.tar.gz in the root folder of your account. You can download it to your local
system by connecting through FTP. To know more about how to connect to FTP, please refer to
the following article: https://www.ipage.com/help/article/ftp-how-to-connect-using-an-ftp-client .

I have created a backup of all the website files in your account into a compressed file:
backup_03042018.tar.gz and also created a backup file, named:
fnh_6h77l344ka_backup_0304.sql, of the database(fnh_6h77l344ka) associated with the
website. I have placed both these backup file in the root directory of your account. You can
download it to your local system by connecting through FTP. To know more about how to
connect to FTP, please refer to the following article: https://www.ipage.com/help/article/ftp-how-
to-connect-using-an-ftp-client .

Weebly contact form:

I apologize for the inconvenience caused to you. Since Weebly forms don’t work when
accessed with www, as in http://www.coasttocoaststeel.com/contact-us.html, you were not able
to submit the contact form. I have uploaded the redirect code in the .htaccess file to redirect the
website to access without www. The contact form is working fine now. I was able to submit the
form at http://coasttocoaststeel.com/contact-us.html . Please clear browser cache and check the
website functionality from your end. For details about how to clear browser cache, please refer
to the following article: https://www.ipage.com/help/article/clearing-a-web-browsers-cache .

Site Slowness:
I tried accessing your website http://tasimbazol.com/ with different networks and systems. It is
loading fine for me. I have also tried to analyse the website’s loading time and could see that the
website loads at average speed. The following URL provides the test results:
https://tools.pingdom.com/#!/eCSzFA/growth-factor.co .

You can refer to the following knowledge base article for details on how to make your website
load even faster: https://www.powweb.com/help/article/reference-how-to-make-your-website-
load-faster . In case the issue persists, please get back to us with the traceroute results for your
domain: paragonframingandart.com . For details on how to run tracert command, please refer to
the following article: https://www.powweb.com/help/article/using-the-traceroute-tracert-
command .

Tracert:
Regarding to the tracert result, I could see that website reached to our server and then getting
the timeout errors. Also our server doesn't honour ping and tracert results when the traffic is
high.

WordPress Slowness:
We apologize for the inconvenience this has caused you. I checked the website
https://www.influencetoinspire.org/ and was able to duplicate the slowness issue that you have
reported for it's WordPress website. The following URL provides the test results:
https://tools.pingdom.com/#!/cq5Ryi/https://www.influencetoinspire.org/

WordPress is a database driven website. Normally, there will be temporary slowness in

database driven websites if there are too many processes running in the database. Also,
unwanted plugins, trying to access external links from the website, themes etc. can result in
slowness. You can optimize the database tables regularly to increase the speed of your
database driven website. You can also remove unwanted plugins, if any. Any plugin serving
dynamic content also adds to page processing time. I would also suggest that you index the
database and also limit the number of posts and images per page to improve the performance.

To know more about how to optimize the database, you can refer the URL
https://www1.property.com/help/article/database-how-to-repair-and-optimize-your-database .
Plugin such as P3 (Plugin Performance Profiler) can let you know if any active plugins in your
website are causing slowness.

Please refer to the following link to know how to make the website load faster:
https://www.property.com/help/article/reference-how-to-make-your-website-load-faster .

Reverse DNS:
I apologize for the inconvenience caused to you. I checked the header information you provided.
I could see that the sender's IP 196.192.83.179 doesn't have a reverse DNS set. For security
reasons, our servers don’t accept emails from IPs or domains that don’t have a reverse DNS
set. Mail servers that don't have Reverse DNS are typically used by spammers. Therefore, we
have blocked the emails coming from those mail servers which don't have Reverse DNS.

I suggest you to contact the email admins of the relevant sender (associated with
196.192.83.179) and have them set up a Reverse DNS for their mail server and then try to send
emails to addresses web@zethical.com and admin@neocov.com .
The senders (@ila.mu and @currimjee.com) would need to contact their email service provider
to set a reverse DNS for their IP 196.192.83.179 . Once the reverse DNS is set for the IP, our
servers would accept emails sent from *@ila.mu and *@currimjee.com and would deliver them
to your mailbox.

WordPress Restore:
Per your request, I have restored the website files associated with website: worldshop.media-
ci.com from yesterday's backup, that is, from March 27, 2018. Since this is a WordPress
website, we would also need to restore the database associated with this website. I will have to
hand this ticket over to one of our senior technical specialists to check the database backup and
restore it. You should be hearing from them in a couple of hours.

Telnet Results:
1. Go to Start -> Run -> CMD
2. In the prompt you write: telnet pop.ipage.com 110 [ENTER]
Similarly run it for pop.ipage.com 995 and get back to us with the results

Records not pointing to us:

I apologize for the inconvenience caused to you. I could see that the A records of your domain:
troyllove.com are pointing to external IP 23.236.62.147 . Since the website is not hosted with us,
we would not be able to troubleshoot the website issues. You would need to contact your
current hosting service provider for further assistance.

In case you would like to use our hosting services, you would need to point the A record of the
domain: troyllove.com to our IP: 65.254.248.132 . I also see that the name servers of the
domain are pointing to ns6.wixdns.net and ns7.wixdns.net . Since only the name server provider
would have access to update the DNS records, you would need to contact them to update the A
records for your domain.

Subdomain Redirect not working:

I checked the functionality of the sub-domain: crm.norcalfp.com and was able to replicate the
blank page. I could see that the redirect was set to stealth redirect. Since some URL’s would not
allow stealth redirects, it was loading a blank page. I have manually updated the standard
redirect code and the sub-domain is working fine now. I would suggest that you clear browser
cache and check the functionality. For details about how to clear browser cache, please refer to
the following article: http://www.domain.com/help/article/clearing-a-web-browsers-cache .

I checked the subdomain: creditmyrent.raceu2millionaire.com that you were trying to create.

Since the URL you were trying to redirect it to, contains special characters, the subdomain was
not displaying in domain central and also was not created properly. However, I could see that it
was created in the back-end with incomplete destination URL. I updated the complete URL in
the index.html file(within folder /creditmyrent.raceu2millionaire.com-redirect) and checked the
functionality of the sub-domain.
However the subdomain was loading blank page. I could see that the redirect was set to stealth
redirect. After taking a closer look at the problem, we determined that the website you are
redirecting to will not allow a "Stealth" style redirect. The reason for this is that in order to be
redirected in "stealth" mode, the website needs to be loaded in a frame and some websites are
coded in such a way that they cannot be loaded in a frame.

I have manually updated the standard redirect code and the sub-domain is working fine now. I
would suggest that you clear browser cache and check the functionality. For details about how
to clear browser cache, please refer to the following article:
http://www.domain.com/help/article/clearing-a-web-browsers-cache .

G Suite client setup:

I apologize for the inconvenience caused to you. I have checked the screenshot of the error
message and email client settings you provided. In order to setup a Google APPs account in an
email client such as Outlook or MacMail, the POP or IMAP service will first need to be in
enabled in each Google account and new server settings will need to be used when setting up
the account. To enable POP or IMAP services for each account log into email account at
https://mail.google.com and click on the gear icon in the upper right corner (directly under the
account username) and from the drop down menu select 'Settings', on the Settings page select
the 'Forwarding and POP/IMAP' option which is where you will enable POP or IMAP and also
find some additional options.

Once POP/ IMAP has been enabled use the following settings when setting up the account in
Outlook:

Username: (Email Address)

Password: (Email Password)

Incoming IMAP Server: imap.gmail.com

Incoming IMAP Port: 993
Requires SSL: Yes

Outgoing SMTP Server: smtp.gmail.com

SMTP Port: 465
Requires SSL: Yes
Requires authentication: Yes (Use same as incoming)

Also, we have had reports that certain versions of Outlook fail to send a test message to your
email account by clicking on the button 'Automatically test account settings when next is
clicked', as they do not appear to be sending the SMTP authentication (username and
password) when sending email. This also happens to be a bug in the email client. We suggest
you to ignore this error message. Most people have reported that sending email normally
worked perfectly and only the test failed. So we suggest that you configure email client by
following the above instructions or referring to:
https://support.google.com/mail/troubleshooter/1668960 and unchecking the above option (that
is, Automatically test account settings when next is clicked) and then test the email functionality.

If the issue persists, please get back to us with the screenshots of the error message that you
receive and all the settings which you have entered in your email client. You can refer to the
knowledge base link https://www.netfirms.com/help/article/general-how-to-take-a-screen-shot in
order to learn how to take screenshots.

Customer Approval:
- WordPress admin panel login details.
- Confirmation to disable plugins and change theme (if needed) from our end.
Please note that on changing theme, website may lose customization done to the theme.

Reset Joomla Password:

As per our Security Policy, we can not reset the Joomla admin Password and give it to you. You
can always use the ‘Lost your password?’ ( http://staractu-
bf.net/index.php?option=com_users&view=reset ) link to retrieve the password. If you don’t
have access to the email address, then you can try the methods provided in the Joomla!
Support page at:
https://docs.joomla.org/How_do_you_recover_or_reset_your_admin_password%3F . In case
you are resetting the password from phpMyAdmin, you would need to make changes in
Database: stardb and Table: actu_users

As per our Security Policy, we can not reset the Joomla admin Password and give it to you. You
can always use the ‘Lost your password?’
( http://regentfoods.net/index.php?option=com_users&view=reset ) link to retrieve the password.
However, since this method is not working for you, you can try the methods provided in the
Joomla! Support page at:
https://docs.joomla.org/How_do_you_recover_or_reset_your_admin_password%3F .

You can access the database at: https://www.globat.com/controlpanel/MySQL/index.bml

The database you would need to make changes in is: ss_dbname_ia42c2jcef and Table:
iojda_users . For details about how to access phpMyAdmin for the MySQL database, please
refer to the following article: http://www.globat.com/help/article/working-with-mysql-databases .

https://forum.joomla.org/viewtopic.php?t=863063

SiteDelux:
SiteDelux is outdated web builder tool, which is not under regular maintenance. Unfortunately,
we have discontinued the SiteDelux tool. However, the websites files can be edited in the File
Manager tool. You can refer the steps in the URL https://www.bizland.com/help/article/file-
management-how-to-edit-files-using-file-manager to learn how to edit the files in the
FileManager tool.

Also, you can create the new website using the design tool available in the control panel,
Weebly Drag and Drop Builder and Website Builder tool, as they are more compatible with
modern browsers.

Bug:
We have filed a bug report to the Engineering team regarding the issue with enabling free SSL
for the domain that are hosted with us. Unfortunately, we can't provide exact time frame as it
needs time to debug and resolve the issue. Your issue will be resolved at the earliest time
possible by our Engineering team. We apologize for any inconvenience this may cause in the
meantime.

GSuite Upgrade error: 2005 5004

Customer is trying to upgrade mailbox: jesse@goatlockerbeer.com to G Suite. However,
receiving an error. Credit is available in the account.

I tried upgrading, used different passwords, got the following error: action completed with error:
There was an error configuring your Google account (1014) .

Customer has few other mailboxes already upgraded to GSuite associated with the same
domain. Tried running the re-sync tool and upgrading the mailbox, the issue persists. Please
check.

Connection Refused (Rate Limit):

554 walimpinc13 bizsmtp Connection refused - 209.85.192.196
sender rejected

grep "209.85.161.44" IMP.2018080313 | grep "MAX-CONNECTIONS"

We apologize for the inconvenience caused. In order to ensure the integrity of our hosting
platform we limit incoming email sent from servers whose IPs exceeds our max connection
limits. This measure is in place in order to reduce the amount of incoming spam and alleviate
the load on our mail servers. The email delay was caused due to our server rate limiting
connections from the sending server. At the time this email was sent, the server had already
exceeded the allowed number of connections. In our spam scanning system amount of spam
received from an IP decides the threshold value for that IP. So it all depends on the reputation
of the IP which has to be maintained by the sender server by filtering spam mails.

I have tested the email functionality and there are no issues received now. We have system
administrators who are monitoring the incoming and outgoing email volume around the clock
and taking measures to reduce the volume instantly. Sometimes, due to unforeseen
circumstances, volume of the emails goes out of control.
Stealth redirect not working:
After taking a closer look at the problem you reported, we determined that the website you are
redirecting to will not allow a "Stealth" style redirect. The reason for this is that in order to be
"stealth", the website needs to be loaded in a frame and some websites are coded in such a
way that they cannot be loaded in a frame.

We apologize for any confusion this may have caused you. We recommend that you try a
standard style redirect as that should work without a problem. If you have any further questions,
please don't hesitate to reply back.

Gmail configuration:
1. Settings>Accounts and Import.
2. Add a mail account.
3. Enter your email address.
4. Select 'Import emails from my other account (POP3)' and click on 'Next'.
5. Username: enter your complete email address and Password: you mailbox password.
6. Enter POP Server: pop.domain.com, leave the Port: as 110.
7. You can check the option 'Leave a copy of retrieved message on the server.' if you would like
a copy of the emails to remain on the server. They would be deleted otherwise once they are
downloaded to Gmail.
8. Click on 'Add Account'.
TO configure outgoing:
9. Select 'Yes, I want to be able to send mail as: josh@kindlingdigital.net' and 'Next'.
10. Click on 'Next Step'.
11. Enter the SMTP Server: smtp.domain.com and leave the Port as 587.
12. Username: enter your complete email address and Password: you mailbox password.
13. Click on 'Add Account'.
14. A confirmation email would be sent to your mailbox. You can either click on the link in the
confirmation email or enter and verify the confirmation code.

Eml format:
Also, please provide us an eml format of the email that you have been trying to send to
rwilliams@jmgms.org . To learn more about converting email to .eml format in Outlook, please
go to :
https://www.ibm.com/developerworks/community/groups/service/html/communitystart?communit
yUuid=3fe6b1fc-1f75-4084-a2f4-9be19b094909

SQL_BIG_SELECTS:
The SQL query, i.e. SET SQL_BIG_SELECTS=1 is supported in our platform but by default the
value is disabled. We do not encourage the customers to use such queries in the script which
will consume or performance will reduce, or may create some complexity in queries. However,
the SET SQL_BIG_SELECTS=1 is disabled by default for all MySQL databases, if member
needs then he can explicit specify the value in query and then execute the relevant SQL quires.
Advice customer to do not use such complex or disregards the performance query,since we are
on Shared Hosting Platform.

MAX_JOIN_SIZE:
On our servers we will disable the queries that examine more than 7 million rows in the
database.
In order to resolve this issue you can split the query into 2 or 3 queries and then try to execute
the query in your scripts

The SQL query, i.e. SET SQL_BIG_SELECTS=1 is supported in our platform but by default the
value is disabled. We do not encourage the customers to use such queries in the script which
will consume resources or reduce performance, or may create some complexity in queries.
However, the SET SQL_BIG_SELECTS=1 is disabled by default for all MySQL databases, If
you need, you can explicitly specify the value in query and then execute the relevant SQL
queries. However, it is advised that you do not use such complex query as it may affect
performance, since we are on Shared Hosting Platform.

Also, on our servers we disable the queries that examine more than 7 million rows in the
database, due to which you may encounter MAX_JOIN_SIZE error. In order to resolve this
issue you can split the query into 2 or 3 queries and then try to execute the query in your scripts

Create new WordPress user:

I would suggest that you create a new admin user and try accessing the WordPress admin
panel. You can run following three SQL queries to create a new admin user with username:
admin999 and password: password999 . Below are the steps to follow:

1) Access phpMyAdmin for the database at:

https://www1.ipage.com/controlpanel/MySQL/index.bml by clicking on the database name
ss_dbname_d712djfk7h and clicking on ‘Access phpMyAdmin’ icon from the right pane.
2) Click on SQL, on the window that appears.
3) Paste the below query in the editable box and click on ‘Go’:
INSERT INTO `wp_users` (`user_login`, `user_pass`, `user_nicename`, `user_email`,
`user_status`) VALUES ('admin999', MD5('password999'), 'firstname lastname',
'email@example.com', '0');
4) Once the above query is executed, you can run the below query:
INSERT INTO `wp_usermeta` (`umeta_id`, `user_id`, `meta_key`, `meta_value`) VALUES
(NULL, (Select max(id) FROM wp_users), 'wp_capabilities', 'a:1:{s:13:"administrator";s:1:"1";}');
5) Run this query as well:
INSERT INTO `wp_usermeta` (`umeta_id`, `user_id`, `meta_key`, `meta_value`) VALUES
(NULL, (Select max(id) FROM wp_users), 'wp_user_level', '10');

Once you have run these three queries, you can try logging in to the WordPress admin panel
using the aforementioned username and password.
MySQL connections:
mysql -p mailsettings -h db-mail -u support
mysql -p bl -h db -u support

DB Corrupted:
I apologize for the inconvenience this may have caused you. I was able to replicate the issue
while accessing phpMyAdmin for the database: mirt_travels123 . It appears that the database is
corrupted and this is the reason you are not able to access phpMyAdmin for this database. We
keep last 3 days’ database backup on our servers. I will have to hand this ticket over to one of
our senior technical specialists to check this further and restore the database from the backup. I
will also hand over all my findings to that specialist. You should be hearing from them in a
couple of hours.

GSuite already applied for one domain in the account:

johnribeiro.com remains the active G Suite domain for this account. Moving the domain to
another account does not change this: the G Suite domain is fixed when the first address is
upgraded, and cannot be changed thereafter.

If you now wish to use another domain, such as zero2hired.com, you would need to create
another package, and move THAT domain to the new account, where it could become the
Google Apps domain there. I am sorry for any resulting inconvenience.

Spoofing:
It appears that your mailbox is used for spoofing. Spoofing is basically forging an email header
to make it look like it came from somewhere or someone other than the actual source. It is often
an attempt to trick the recipient into making a damaging statement or releasing sensitive
information, such as passwords. If you're receiving bounced (returned) emails for messages that
you never sent and that use as the return address your domain and addresses you never
created, then this could be a case of spoofing.

Here's how spoofing occurs: A spammer finds an email address or a valid domain. (Spammers
spend their days looking for these.) The spammer sends a large email campaign with this
domain in the From address, using various email tools that prohibit easy tracing of the origin.
These tools cloak, scramble or remove the header entirely. Most people assume an email came
from the address it was sent from, just as they do with the return address on snail mail they
receive. An innocent domain owner gets flooded with bounce messages from the email
addresses that weren't valid or have blocking capabilities. Within a week, the spammer gets
shut down by his/her ISP due to excessive bandwidth, complaints from people who figured out
who actually sent the email, etc. The spammer moves onto another domain.Unfortunately
spoofing is incredibly hard to trace, and the general suggestion to deal with it is to ignore the
problem. You can create clearly defined/unique aliases, and use only those aliases. You can
also set the catch-all option to delete messages that are sent to addresses at your domain
names that do not exist. This narrows the possibility of your email box being flooded by returns,
while the spammer finishes using that domain. Spoofing is possibly the most frustrating abuse
issue to deal with, simply because it cannot be stopped. Spoofing is similar to hand-writing
many letters, and signing someone else's name to it. You can imagine how difficult that would
be to trace.

Migrate to Pro servers:

I apologize for the inconvenience caused to you. I checked your account and could see that you
have WP Essential plan, however the databases on your account have not been moved to the
Pro server, which might be causing the issue. MySQL pro server provides better website
performance along with 150000/hour database queries per user. When we move your
databases to MySQL Pro server your websites will be down for a short period. Please provide
us with confirmation so that we can move your databases to MySQL Pro server.

Import Emails to GSuite:

You can configure this mailbox in an email client by following the instructions at:
https://www.fatcow.com/help/article/email-client-setup and download the emails to the local
system. Once the emails are downloaded to local computer, your can import those emails to
your Google Apps mailboxes aaron@calkoz.com from your local computer. To know how to
import messages into Gmail , please refer to the following article:
https://www.fatcow.com/help/article/g-suite-how-to-import-messages-into-gmail .

Upload Image http error WordPress:

I was able to upload images at http://shotsofluv.com/newsite/wp-admin/upload.php without any
issues. WordPress application does not accept certain images, which could be the reason you
are receiving HTTP error while uploading certain images. You can refer to the article
https://www.conferencesthatwork.com/index.php/technology/2017/07/how-to-solve-the-
infuriating-http-error-when-uploading-images-or-videos-to-wordpress/ in order to find a work
around to upload such media files. I would suggest that you use the 'Add from server' plugin
suggested in above article to upload the media files to your WordPress website. Once the
images are uploaded using the 'Add from server' plugin you should be able to include them in
your website without any issues.

Unable to submit form with attachment:

I apologize for the inconvenience caused to you. Since the CGI attachment limit was not set for
your account, you were not able to submit the form when the attachment was of size more that
1 MB. I have set the limit for your account. You will be able to submit attachments of maximum
5MB size at once. I was able to submit the form at
http://hungariantranslation.com.au/?page_id=5284&lang=en . Please check this functionality
from your end after clearing browser cache. To know more about how to clear browser cache,
please refer to the following article: https://www.ipage.com/help/article/clearing-a-web-browsers-
cache .

cURL:
I have checked the error message you provided, it appears that your plugin needs latest version
of cURL. We provide cURL version 7.22 on our servers and we may upgrade the CURL version
in near future, however we can't provide you the exact time frame. In order to fix this issue, you
can contact the plugin vendor and ask them to allow one of the currently supported ciphers:

DHE_RSA_AES_128_CBC_SHA1
DHE_RSA_AES_128_CBC_SHA256
DHE_RSA_CAMELLIA_128_CBC_SHA1
DHE_RSA_AES_256_CBC_SHA1
DHE_RSA_AES_256_CBC_SHA256
DHE_RSA_CAMELLIA_256_CBC_SHA1
DHE_RSA_3DES_EDE_CBC_SHA1
DHE_DSS_AES_128_CBC_SHA1
DHE_DSS_AES_128_CBC_SHA256
DHE_DSS_CAMELLIA_128_CBC_SHA1
DHE_DSS_AES_256_CBC_SHA1
DHE_DSS_AES_256_CBC_SHA256
DHE_DSS_CAMELLIA_256_CBC_SHA1
DHE_DSS_3DES_EDE_CBC_SHA1
DHE_DSS_ARCFOUR_SHA1
RSA_AES_128_CBC_SHA1
RSA_AES_128_CBC_SHA256
RSA_CAMELLIA_128_CBC_SHA1
RSA_AES_256_CBC_SHA1
RSA_AES_256_CBC_SHA256
RSA_CAMELLIA_256_CBC_SHA1
RSA_3DES_EDE_CBC_SHA1
RSA_ARCFOUR_SHA1
RSA_ARCFOUR_MD5

Spam redirects to website:

Currently, the website https://fathersfilters.com is loading fine. Please check once again. Also, I
have scanned your account and your website files are free from malware contents.

The external links that are seen under stats are the links through which users have tried to
access your website, it cannot be removed. It is the record of the URLs from which a request
was made during the report period.

Links from an external page (other websites except search engines) shows what pages your
visitors are coming from. If there are large number of referrals, it can be an anonymous browser
that gives a bad referrer link, or maybe it's a web-bot which harvests things and leaves a
referring link that goes nowhere. You can also block spam referrers using .htaccess file with the
following code:
Options +FollowSymlinks
RewriteEngine On
RewriteCond %{HTTP_REFERER} ^http://(www\.)?spamsite1.com.*$ [OR]
RewriteCond %{HTTP_REFERER} ^http://(www\.)?spamsite2.com.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} ^http://(www\.)?spamsite3.com.*$ [NC,OR]
RewriteCond %{HTTP_REFERER} ^http://(www\.)?spamsite4.com.*$ [NC]
RewriteRule .* - [F,L]

Make sure to replace the spam website with the exact porn website which you can see in the
stats page.

Low Priority MX records:

I checked the MX records of your domain: grupoisotex.com and could see that our MX records
have been set at lower priority. Since our MX records don’t work on low priority, you are not able
to receive emails. You would need to correct the MX records of the domain in order to be able to
receive the emails. You can remove the incorrect MX record (with priority 10 and host name: @
that is pointing to correo.grupoisotex.com) updated for the domain from Domain Central by
referring to the following article: https://www.ipage.com/help/article/dns-management-how-to-
update-mx-records .

Once the MX records are corrected, it would take 1 to 12 hours for DNS propagation. Please
check the email functionality after the propagation time. It would work fine. However, in case
you are using external email services, you would need to contact them for further assistance.

Recreate mailbox:
I apologize for the delay in getting back to you and appreciate your patience. I checked the
bounce back message that you provided and was able to replicate the issue. It seems like the
mailbox is not created properly on the servers which is causing the issue. Could you get back to
us with the confirmation to recreate the mailbox from our end to fix this issue? Once the mailbox
is recreated, we will restore the emails that existed in the mailbox from the backup available on
our servers. However, please make sure to take a backup of the contacts and calendar entries(if
any), since we don't keep a backup of the same and would not be able to restore them.

406 error:
<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>

Soap Client(woo commerce):

In order to enable SOAP client for latest version of WooCommerce make the following changes
in the '/woocommerce# vi includes/admin/views/html-admin-page-status-report.php' file:

1. Add require_once('SOAP/Client.php'); after the first <?php tag.

2. Replace the line
if ( $environment['soapclient_enabled'] ) {
with
if(class_exists('Soap_Client')){

The PHP version should be 5.6 or lower. Since in PHP 7.0 and 7.1 the SOAP PEAR package is
not installed, it doesn't work in PHP 7.0 and 7.1.

I apologize for the delay and appreciate your patience. I have added code in the woocommerce
plugin file to enable Soap Client. You would need to downgrade the PHP version in your
account to 5.6 or lower for this to work. Since PHP 7.0 and 7.1 the SOAP PEAR package is not
installed, it doesn't work in PHP 7.0 and 7.1. You can refer to the following article for details
about how to switch PHP version: https://www.ipage.com/help/article/scripting-how-to-switch-
your-php-version .

Supported:
https://www.voiceofdiya.com/hardware-software-os-and-isp-details/
- PDO PHP Extension
- Mbstring PHP Extension
- Tokenizer PHP Extension
- XML PHP Extension

Podcast iTunes (HTTP Head):

We are sorry to know about the inconvenience caused. This is not the kind of request that we
normally receive in Support operations. Therefore, we are not really sure if our servers do
support HTTP HEAD requests. However, by looking at the server logs, I see that our servers
are serving HTTP HEAD requests sent by iTune apps and other clients. So, it should work fine
for you.

I would request you to contact Apple Support or contact iTunes Podcast Support at
https://itunespartner.apple.com/en/podcasts/overview and report them about this issue. In case
there are any changes needed from the server end for this to work, please get back to us with
the complete details of the same so that we can assist you further.

SSLCertificates:
/usr/local/cgi/ssl/bl/4/k/4kcccom

Frustrated:
I definitely know that could be frustrating for you when you experience such issues. To be
honest, it is never our intention to create such an awkward and uncomfortable situation for you.
Your account is very important to us and would like to have a chance to work out on the issue
you're experiencing.
Check IP Blacklist:
cat /usr/local/cgi/admin/etc/blocked_hosts.txt | grep 104.178.32.39

Forward not working:

I see that tammie.tamster@gmail.com is added as mail delivery to mailbox
info@tammiebuckler.com. So any test email that is sent from tammie.tamster@gmail.com to
info@tammiebuckler.com would require the email to be forwarded back to itself, which wouldn't
work. This is the reason you were not able to receive the test emails you sent. I would suggest
that you try sending the test email from any other address to test email forwarding functionality
from your end.

CRM:
http://crm.wzukltd.com/
User: eig@jdiuk.com
Password: wz2015?!

Leverage cache:
<IfModule mod_expires.c>
ExpiresActive On

# Images
ExpiresByType image/jpeg "access plus 1 year"
ExpiresByType image/gif "access plus 1 year"
ExpiresByType image/png "access plus 1 year"
ExpiresByType image/webp "access plus 1 year"
ExpiresByType image/svg+xml "access plus 1 year"
ExpiresByType image/x-icon "access plus 1 year"

# Video
ExpiresByType video/mp4 "access plus 1 year"
ExpiresByType video/mpeg "access plus 1 year"

# CSS, JavaScript
ExpiresByType text/css "access plus 1 month"
ExpiresByType text/javascript "access plus 1 month"
ExpiresByType application/javascript "access plus 1 month"

# Others
ExpiresByType application/pdf "access plus 1 month"
ExpiresByType application/x-shockwave-flash "access plus 1 month"
</IfModule>

Or

## EXPIRES CACHING ##
<IfModule mod_expires.c>
ExpiresActive On
ExpiresByType image/jpg "access 1 year"
ExpiresByType image/jpeg "access 1 year"
ExpiresByType image/gif "access 1 year"
ExpiresByType image/png "access 1 year"
ExpiresByType text/css "access 1 month"
ExpiresByType text/html "access 1 month"
ExpiresByType application/pdf "access 1 month"
ExpiresByType text/x-javascript "access 1 month"
ExpiresByType application/x-shockwave-flash "access 1 month"
ExpiresByType image/x-icon "access 1 year"
ExpiresDefault "access 1 month"
</IfModule>
## EXPIRES CACHING ##

MIME Type:
https://gist.github.com/asakasinsky/6126409

Incorrect UID:
id -u pow.wakeeden
1151615
mysql> select * from UnixUser where UserName='pow.wakeeden';
+-----------+--------------+------------+----------------+------------+-----------------------------------+------------
---------+---------------------+
| UidNumber | UserName | PropertyID | ParentUserName | DataCenter | HomeDir
| Updated | Added |
+-----------+--------------+------------+----------------+------------+-----------------------------------+------------
---------+---------------------+
| 6086591 | pow.wakeeden | 32 | pow.wakeeden | sd |
/home/users/web/b452/pow.wakeeden | 2018-09-24 14:24:06 | 2018-09-24 14:24:06 |
+-----------+--------------+------------+----------------+------------+-----------------------------------+------------
---------+---------------------+
1 row in set (0.00 sec)