I am posting this in the hope its helpful to anyone out there. Its a bit of as rant at first, but at the end will post the *helpfull* stuff, promise.
My business website has been hacked 5 TIMES in the last 2 months. I have been dealing with MWEB Support EVERY day since then, I even had words with their support manager, Ettiene, to try to make him understand that call centres WILL NEVER WORK and that my problem is simply not being addressed..He promised to red ball it, but 3 weeks later...... same problems exist.
Words will fail to make any of you understand my level of frustration with this utterly useless service provider.
Dealing with mweb support normally goes a little something like this :
1. You dial the number and listen to their advertising spam for 8 to 12 minutes
2.then you get to choose what department you want to go through. (I am doing this right now as I type this)
3. Eventually, after another 5-10 minutes, your call is answered (just answered after 9 minutes and 39 seconds)
4. Then you have to tell them the WHOLE story, what has been done to date, and what you would like them to do.
5. You then get put on hold (another 5 minutes)
6. He then tells you that the hosting guys will investigate and get back to you.
7. 2 days later, you repeat the whole process
8. In the meantime you send them email after email, and support ticket after support ticket gets generated, only to disappear into cybernothing. (ooh Im hold for the 4th time this call again) (21 minutes
9. Eventually, after yelling at Ettiene for long enough you MAY get through to someone, who has ZERO experience, and will try to troubleshoot your problem and they will tell you its nothing to do with them something you did wrong, and you have to re-create your website from scratch AGAIN.
MWEB support HAS to be most inept, unhelpful IT support structure around. Especially if your problem is HOSTING related. there is simply no way anyone will put you through to the backend hosing support or developers. Forget it. Instead you have to entertain the notions of a knowledge base reading noob while your blood pressure is starting to redline, because youve just been told for the umpteenth time "Oh it must be because your wordpress plugins are out of Date." GRRRRRRR
Anyway, finally Spoke to Michele (Support Teamleader)(32 minutes 24 seconds later) who just informed me that they are very aware of my problem (Then why is nobody calling me , or at least emailing me, or SOMETHING), and also that they know about the hacking problem as 2 support staff have told me before.
(After being handed over to another Support tech, and another 15 minutes explaining EVERYTHING I have done. AGAIN, I am now told that their engineers will investingate and will get back to me, just not today, as they all go home at 4. Wow havent heard that one before... Meanwhile im here looking like a poephol in the eyes of my customers. Wait a minute, surely a restore takes only a few minutes?????. mmm).
I have now resigned myself to move this domain to Afrihost or similar hosting provider, with the hopes that that HSP has tighter security. Its a shame, because if I HAVE to complement these boobs, the ADSL line I have had with them has been rock solid, with the consistently lowest ping on the BF servers of ANY other player. (8 or 9ms EVERY time).
Ok So in the interest that someone may gain something from it, here is a shortened version of what has happened.
Website Hacked1 :
Admin password changed
index.php changed to display hacked image
Cpanel and FTP password changed
DNS Record changed for the domain
Other "infected files"
·random.php (root directory of the WordPress installation)
·ppchecker (email addresses and email sender, this was uploaded to his \wp-content\uploads\2015\02 directory)
Response :
Moved to Cpanel2 server - got hacked
WP installation updated
All plugins updated
all passwords changed
HACKED AGAIN (3 Times)
Moved again to CPanel4 server
Complete new WP installation, spent 2 weeks re-creating website FROM SCRATCH
16 character WP Login
8 character VERY cryptic Cplanel password
"very Strong" Database password
Bulleproof Security the ONLY plugin used - no others.
Latest Hack :
Cpanel / FTP password changed
MySQL tables wiped
Files deleted from Theme folder
Blank WP installation overwrites my old files
Website name and description changed to "Hacked by *insert rectums name here*"
All posts and pages deleted from blog, so blank page displays
Website redirect inserted, one that could only be removed with Mweb's backend processes. (????)
Pipe up if any of this seems familiar.
Wessie
