u/Deep-Egg-6167

Hello,

I'm not a WP developer so I'm hoping someone can help.

My site has the latest version of WP

As of yesterday it had all the plugins updated to the latest version.

I ran a security scan on siteground and it said everything is OK.

I've disabled SSH, PHP updoad and execution and FTP access. I have MFA turned on.

Yesterday might sight was up - today I get this.

https://preview.redd.it/1tqtswhmd9wg1.png?width=1492&format=png&auto=webp&s=83638a94a0a52136a1ecbab54688c2e2773ef8fb

If I right click on the page and go to properties I get this.

Now I can restore my site - not knowing what page they used to hack my site but after I restore it and clean it this will come right back in a day or two - within a week.

https://preview.redd.it/80rh5jmzd9wg1.png?width=828&format=png&auto=webp&s=c4d8ea642d72de5cd6180f72d9a2eeb79e237463

My security scan shows these uploaded today so I deleted them.

/home/u25-2sjfc9ri30m5/www/mywebsite.com/public_html/wp-content/plugins/wp-perf-analytics/wp-perf-analytics.php

STR|plugin_deployer_wp|XXXX|19/04/26|/home/u25-2sjfc9ri30m5/www/mydomain.com/public_html/wp-content/themes/mydomain.com/functions.php

STR|wp_js_injector_3|XXXX|19/04/26|/home/u25-2sjfc9ri30m5/www/mydomain.com/public_html/wp-content/plugins/wp-perf-analytics/wp-perf-analytics.php

Hello,

Let's say my email domain is widgets.com Is there an easy way to block any emails not really coming from widgets.com but pretending to be from widgets.com ?

E.g. I'm bob@widgets.com and I get an email that says it is from bob@widgets.com or hr@widgets.com but the underlying email address is scammer@fnnigerianprince.com

I can put the spf to -all but I'm open to rules or filters etc. I'd want to roll it out company wide.

Thanks.

Hello,

I don't know enough about the BIMI record. I honestly don't know if it is just a warm fuzzy thing for end users or if any real email scanning systems care. If I can do it without a cert will it have any benefit or is it strictly a visual thing for end users?

Hello,

If this can be done through the gui - I'd really really prefer to do that.

I need this for email users essentially but it should be the same thing for the most part.

If you know a powershell method - I apologize but you'll have to spoon feed it to me.

E.g.

Install modudle blah blah blah on Windows

Attach to 365 using blah blah blah command

then run this script

Thanks!

Hello,

I'm guessing MS applied a patch that killed logon from PC-A to PC-B on my network. Both are on the same network, same subnet - no firewall in between.

If I try to use RDP or \\PC-B\ share from PC-A it prompts me for the username (so it is seeing it) however it doesn't matter if I put in pc-b\username or .\username it doesn't accept the password. I know after 10 times I've typed the PW which isn't the complicated correctly.

I have two user accounts that are identical on both PCs and neither works.

I've tried disabling the windows firewall on both PCs - no change.

Any guess what happened?

I'm running Win 11 25H2 with all the latest updates.

FYI I can connect using VNC which uses the Windows Credentials so I'm not completely at a loss, however file transfers are much faster if I could connect to that PC directly over windows networking.

It doesn't matter if I use computername\user, IPaddress\username or .\usename or just username

It doesn't matter if I try to connect via IP or computer name both give me the never ending prompt

Event ID 4625 and 5061

I do not use facial ID or a pin.

I've rebooted both PCs numerous times which would also clear and reset almost anything.

Hello,

I'm not sure if the issue is signing an rdp but all of a sudden some of our users are getting this (they are running Win 11 25H2 with all the latest patches and rebooted.

Any videos on how to sign an RDP file or fixing this issue?

https://preview.redd.it/nlurdfwhnkvg1.jpg?width=763&format=pjpg&auto=webp&s=51862f7cbc485530990cdf9ece37afa94510f714