Autoblog getting hacked WTF

freeufcdotinfo

freeufcdotinfo

Power Member
Joined
Jun 12, 2008
Messages
685
Reaction score
157
Changed pass word few time but still seems to get rouge posts from these dudes.

Could it be something to do with the plug ins..
 
Advertise on BHW
freeufcdotinfo said:
Changed pass word few time but still seems to get rouge posts from these dudes.

Could it be something to do with the plug ins..
Click to expand...
It could be the plugins or it could be that your install was injected a while ago and they are just getting around to utilizing the scripts they installed at that point in time. You may want to check out one of the WP security plugins.
 
Update your wordpress ;)

better is to delete each plugin and installing them again, step by step

So like if you install plugin no4 and you get hacked --- > you know that plugin4 causes this ;)
 
Latest version - I only have MaxBlogPress Ping Optimizer and WP-o-Matic

anyone had any probs with these.
 
Maybe problem isnt webhost or wordpress, but your pc?

You checked it with latest av?

Pw is safed by browser? try to change pw from other pc
 
if you just downloaded the theme for free somewhere, there could be "unwanted" code in your theme causing your issue. Try changing themes (to something created by someone other than your current theme) and see if the problems goes away.
Posted via Mobile Device
 
Might want to also look for sh.php and o.php within the public root of your hosting service. These two filenames are the most common for injected scripts. If those arent' there and the only two plugins you're using are mentioned above, try swapping out the theme as mentioned. If you still get hacked, see about redownloading the plugins in question from a threat on here where people aren't complaining about getting hacked.

Secondly, if your wordpress installation was downloaded from soemwhere other than wordpress.org, try fixing that first.
 
its called a shell. doesn't matter about your pass, he can easily change stuff with a shell, its like having a backdoor to your files + sql db.

By now he probably has about 10-20 of these on your host if he is smart. You can download public html folder and scan with av. If i were you id just delete wp, reinstall it and link it to the existing db.
 
gh0st said:
its called a shell. doesn't matter about your pass, he can easily change stuff with a shell, its like having a backdoor to your files + sql db.

By now he probably has about 10-20 of these on your host if he is smart. You can download public html folder and scan with av. If i were you id just delete wp, reinstall it and link it to the existing db.
Click to expand...

Thanks, wasn't sure they were called shells. Makes sense *smacks self on forehead* don't I feel stupid now.

I've actually saved a couple of those from a social network I administer. I find them useful when working on other people's websites. After I upload everything and have it set, I back everything up so I have a copy of the site myself. If they don't pay me, oopsiedoodle. There goes the site.

I agree though, it might be best to listen to the guy above this post.
 
adamster hit the nail on the head - it was theme, last thing I would have thought of, changed back to standard theme and no problems...
 
Just check your plugins folders.It should be 777..............may be its one of the problem.
 
Advertise on BHW
You must log in or register to reply here.
Sign up now!

Main Menu

Home Main Forum List Black Hat SEO White Hat SEO BHW Newbie Guide Blogging Black Hat Tools Social Networking Downloads

Marketplace

Account Selling Content / Copywriting Hosting Images, Logos & Videos Proxies For Sale SEO - Link building SEO - Packages Social Media Social Media - Panels Misc

Making Money

Affiliate Programs Hire a Freelancer Making Money Pay Per Click Site Flipping

BlackHatWorld

BHW Merch Forum Suggestions & Feedback Introductions Lounge Dispute Resolution

Other

Domain Name Forum IM Journeys Web Hosting Newsletter
Back
Top