WordPress.org

Ready to get started?Download WordPress

Forums

Blog hacked please help (5 posts)

  1. Collar City Brownstone
    Member
    Posted 9 months ago #

    Hello, My blog was hacked. I did change the password, but the hacker was able to get in again and register as an administrator. I changed my password two more times, but still the hacker got in. I then changed my USER ID by registering a new one along with a new password and then deleting the old USER ID. The hacker got in again. How is the hacker able to get my new user id and password right after I change it? Did the person write some type of code to be able to see it? If so where would I find it so that I can delete it?

    Thank you very much for your help.

  2. Collar City Brownstone
    Member
    Posted 9 months ago #

    Oh, I forgot to add that I did put my blog into maintenance mode until my hosting company completes my SSL certificate. I don't want to install it until I know that my blog is "clean" though. It is http://collarcitybrownstone.com

    Thank you

  3. jmyeom
    Member
    Posted 9 months ago #

    slightly off topic.. but try changing your config file to permissions 555, then change your sql password

    see if that resolves your issue

  4. Hello, My blog was hacked. I did change the password, but the hacker was able to get in again and register as an administrator. I changed my password two more times, but still the hacker got in.

    You PC may be compromised as well. Or the attacker is getting in some other way such as on the server level.

    It's often quoted but still a really accurate response:

    You need to start working your way through these resources:
    http://codex.wordpress.org/FAQ_My_site_was_hacked
    http://wordpress.org/support/topic/268083#post-1065779
    http://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/
    http://ottopress.com/2009/hacked-wordpress-backdoors/

    Anything less will probably result in the hacker walking straight back into your site again.

    Additional Resources:
    Hardening WordPress
    http://sitecheck.sucuri.net/scanner/
    http://www.unmaskparasites.com/
    http://blog.sucuri.net/2012/03/wordpress-understanding-its-true-vulnerability.html

  5. Collar City Brownstone
    Member
    Posted 9 months ago #

    Thank you all so much for such a fast response. I am not tech savvy at all, so my blog host is going to have to help me with these instructions.

Reply

You must log in to post.

About this Topic