I already read that but guess what he is come back again today and with a few retries to login he get my admin account……
I find him from statcounter and I notice that he using something from Tools in dashboard probably the “press this” tool I can’t think something else… I must find what method he use to stop him!
Is there any change bugs to the latest WP?
Or if anyone heard any hacks out there?
Please I need help…
Okay that’s crazy the guy was using an old “hack” which is working only on login.php.
Username: admin Password: admin
This is a crazy huge whole to WordPress….
Any ideas how to change this?
Thank you so much for trying helping me but this links is not enough useful. Creating a login page is gives the opportunity to someone to login as admin to the site by typing “admin” to username and password fields. This is an old “hack” which is seems that is still working, is there any way by placing a code or something to avoid this? Thank you very much!
You need to clean up the stuff the hacker has added or changed on your site which enables him to do this.
The cleanup method is covered in the post I linked to. Did you complete all the steps outlined in the link?
Sir, I uninstall and delete the wp-login plugin which is create the login “page” and i am using again the default login link address “wp-login.php”. With default login page I have not this problem, using “admin” as username and password you can login as admin only if your login is as a “page” that’s means that my site is not affected by malware or something.
My site is okay now but the question is why WordPress is not protected enough from these method attacks which is older than 10 years?
Test it by yourself, Click here find a AdminLogin.asp site and use “admin” for username and password.
Okay this is look like kind of joke but I have an old article about it to my site, check this out Google Hack
ASP has nothing whatsoever to do with WordPress. You seem to have gone off at a tangent.
It seems that you are right! As i already say i test yesterday to login with wp-login.php using “admin” as username and password and it was not worked but it seems that he did something and today i test again and it’s logged in. Last 3 days the site hacked 4 times, so I am testing something new i hope will work, i change the username “admin” from database and i install this plugin and is seems that is good “for now”. I will wait for him to see how is goes.
p.s. Is there any place to report him? I have many information about him.
If he is repeatedly getting back in he has probably installed a back door in your site hidden in one or more of your site files or he is using a known vulnerability such as an unpatched copy of the timthumb script.
If you have his IP address (& he’s not using a proxy) you might want to try reporting him to the abuse email address at his ISP.
Dear cubecolour, thank you very much for your time your help was critical! He come back but he couldn’t enter to the site as admin also I report him to his ISP, thank you so much!
