WordPress.org

Ready to get started?Download WordPress

Forums

Site hijacked!?? (5 posts)

  1. barryglick
    Member
    Posted 6 months ago #

    Hope someone can help.

    I have been operating this blog:

    http://techn-french.com

    for some 8 months now. About a week ago, I noticed that there were drafts in the Post section of my admin page in another language, probably Russian, but I don't know.

    I changed my password, downloaded a plugin that was supposed to "clean" the site, but draft posts kept appearing.

    Today, I went to login into my site, and my password did not work. So, I clicked on lost password, got it reset, and went to my site. The blog still comes up with the most recent content, but the admin page is totally messed up.

    The Dashboard has only the words Dashboard, Profile, Flip Image Pro, and Flip Image Free on the left side. No way to access posts or pages or plugins or ANYTHING else.

    I can abandon the site, of course, but I'd prefer not to throw away 8 months of work. Can anyone tell me what's going on? I presume someone hacked my site, and changed my password, but I can't explain being able to login with a new password and having this limited dashboard.

    Any help greatly appreciated.

    Barry

  2. That DNS name does not resolve for me so I can't look at your site.

    If you are hacked then you'll need to give these a read as well as check your PC.

    You need to start working your way through these resources:
    http://codex.wordpress.org/FAQ_My_site_was_hacked
    http://wordpress.org/support/topic/268083#post-1065779
    http://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/
    http://ottopress.com/2009/hacked-wordpress-backdoors/

    Anything less will probably result in the hacker walking straight back into your site again.

    Additional Resources:
    Hardening WordPress
    http://sitecheck.sucuri.net/scanner/
    http://www.unmaskparasites.com/
    http://blog.sucuri.net/2012/03/wordpress-understanding-its-true-vulnerability.html

  3. barryglick
    Member
    Posted 6 months ago #

    Sorry, I guess I'm upset. Here's the correct link:

    http://techno-french.com

    It looks fine, so that doesn't help you. The real problem is that I can no longer login to my own site's dashboard!! I tried resetting the password, by clicking on the lost password link, but WordPress seems to have confused my WordPress.com site with my stand alone blog. So, I can't even reset the password to get back in.

    In other words, when I click on the lost password link on the stand alone site, they seem to get confused and send me a password reset for my WordPress.com site.

    How can I get a password reset for my stand alone blog? Or can hijackers make that impossible too?

    Is there anyway I can reset everything via FTP? Is there anyway to save my previous content--8 months of posts!!

    I sure hope someone can help me because I am very discouraged by the whole WordPress thing. Not to blame WordPress. It's my own dang fault for not having a strong password, but there must be some way to get my site back, or am I wrong?

    I'm worried that the hijackers will do something awful in my name, so any help will be greatly appreciated. Thanks!

    Barry

  4. gettingdownunder
    Member
    Posted 6 months ago #

    Hi Barry. Do you have access to phpmyadmin?

    If so, this guide may help

    https://codex.wordpress.org/Resetting_Your_Password

  5. barryglick
    Member
    Posted 6 months ago #

    I actually don't know. I saw something like that on my ISP CPanel. I'll check out your link, thanks!

    I noticed that all the posts that were put on my site were draft posts. There was never an actual post. I found that these draft posts were created by a certain user. I deleted that user. Will that help?

    Barry

Reply

You must log in to post.

About this Topic