Autoblog getting hacked WTF

freeufcdotinfo

Power Member
Joined
Jun 12, 2008
Messages
685
Reaction score
156
Changed pass word few time but still seems to get rouge posts from these dudes.

Could it be something to do with the plug ins..
 

oldenstylehats

Elite Member
Joined
Apr 10, 2008
Messages
1,892
Reaction score
1,214
Changed pass word few time but still seems to get rouge posts from these dudes.

Could it be something to do with the plug ins..
It could be the plugins or it could be that your install was injected a while ago and they are just getting around to utilizing the scripts they installed at that point in time. You may want to check out one of the http://wordpress.org/extend/plugins/wp-security-scan/.
 

Kingfresh

Regular Member
Joined
Jul 8, 2009
Messages
374
Reaction score
297
Update your wordpress ;)

better is to delete each plugin and installing them again, step by step

So like if you install plugin no4 and you get hacked --- > you know that plugin4 causes this ;)
 

freeufcdotinfo

Power Member
Joined
Jun 12, 2008
Messages
685
Reaction score
156
Latest version - I only have MaxBlogPress Ping Optimizer and WP-o-Matic

anyone had any probs with these.
 

Kingfresh

Regular Member
Joined
Jul 8, 2009
Messages
374
Reaction score
297
Maybe problem isnt webhost or wordpress, but your pc?

You checked it with latest av?

Pw is safed by browser? try to change pw from other pc
 

matapples01

Regular Member
Joined
May 15, 2008
Messages
358
Reaction score
210
if you just downloaded the theme for free somewhere, there could be "unwanted" code in your theme causing your issue. Try changing themes (to something created by someone other than your current theme) and see if the problems goes away.
Posted via Mobile Device
 

borrein

Newbie
Joined
Nov 8, 2009
Messages
13
Reaction score
7
Might want to also look for sh.php and o.php within the public root of your hosting service. These two filenames are the most common for injected scripts. If those arent' there and the only two plugins you're using are mentioned above, try swapping out the theme as mentioned. If you still get hacked, see about redownloading the plugins in question from a threat on here where people aren't complaining about getting hacked.

Secondly, if your wordpress installation was downloaded from soemwhere other than wordpress.org, try fixing that first.
 

gh0st

BANNED
Joined
Feb 7, 2009
Messages
92
Reaction score
47
its called a shell. doesn't matter about your pass, he can easily change stuff with a shell, its like having a backdoor to your files + sql db.

By now he probably has about 10-20 of these on your host if he is smart. You can download public html folder and scan with av. If i were you id just delete wp, reinstall it and link it to the existing db.
 

borrein

Newbie
Joined
Nov 8, 2009
Messages
13
Reaction score
7
its called a shell. doesn't matter about your pass, he can easily change stuff with a shell, its like having a backdoor to your files + sql db.

By now he probably has about 10-20 of these on your host if he is smart. You can download public html folder and scan with av. If i were you id just delete wp, reinstall it and link it to the existing db.

Thanks, wasn't sure they were called shells. Makes sense *smacks self on forehead* don't I feel stupid now.

I've actually saved a couple of those from a social network I administer. I find them useful when working on other people's websites. After I upload everything and have it set, I back everything up so I have a copy of the site myself. If they don't pay me, oopsiedoodle. There goes the site.

I agree though, it might be best to listen to the guy above this post.
 

freeufcdotinfo

Power Member
Joined
Jun 12, 2008
Messages
685
Reaction score
156
adamster hit the nail on the head - it was theme, last thing I would have thought of, changed back to standard theme and no problems...
 
Top