Still getting hacked

  • cedaly1968

    (@cedaly1968)


    10 years, 2 months ago

    We are still getting a user name rootuser inserted into the WordPress MYSQL database. We have changed the .htaccess file to keep people out, we have WordFence set immediately block that user name and nothing seems to work. We have been having this issue for a year and cannot find out how this user name keeps getting inserted. I have the list of 300 things to do when WordPress gets hacked but I am trying to avoid it like the plague. I have several WordPress sites, this is the only one with this issue.

    The issue is that something is inserting rootuser as an administrator into the MySQL database. Any thoughts? This is getting REALLY old.

Viewing 1 replies (of 1 total)
  • perezbox

    (@perezbox)

    10 years, 2 months ago

    Hi @cedaly1968

    If you’ve been having this issue for a year, I would probably stop avoiding the list of things you should do. If you don’t do the things you need to, you’re likely to continue to find yourself in the same situation over and over again. Also, it’s a bit detracting for anyone willing to help if you’re not willing to help yourself.

    If the user continues to be generated you inevitably have a script or code snippet that’s doing the regeneration. Either in a script on the server, or inside a file (i’d look in your functions file). Also, using .htaccess to block access to login will do little for you if the user can initiate the regeneration via direct access or some automation script.

    Best of luck

Viewing 1 replies (of 1 total)

The topic ‘Still getting hacked’ is closed to new replies.

Tags