Autoblog getting hacked WTF

freeufcdotinfo

freeufcdotinfo

Power Member
Joined
Jun 12, 2008
Messages
685
Reaction score
156
Changed pass word few time but still seems to get rouge posts from these dudes.

Could it be something to do with the plug ins..
 
Advertise on BHW
oldenstylehats

oldenstylehats

Elite Member
Joined
Apr 10, 2008
Messages
1,892
Reaction score
1,215
freeufcdotinfo said:
Changed pass word few time but still seems to get rouge posts from these dudes.

Could it be something to do with the plug ins..
Click to expand...
It could be the plugins or it could be that your install was injected a while ago and they are just getting around to utilizing the scripts they installed at that point in time. You may want to check out one of the http://wordpress.org/extend/plugins/wp-security-scan/.
 
Kingfresh

Kingfresh

Regular Member
Joined
Jul 8, 2009
Messages
374
Reaction score
297
Update your wordpress ;)

better is to delete each plugin and installing them again, step by step

So like if you install plugin no4 and you get hacked --- > you know that plugin4 causes this ;)
 
freeufcdotinfo

freeufcdotinfo

Power Member
Joined
Jun 12, 2008
Messages
685
Reaction score
156
Latest version - I only have MaxBlogPress Ping Optimizer and WP-o-Matic

anyone had any probs with these.
 
Kingfresh

Kingfresh

Regular Member
Joined
Jul 8, 2009
Messages
374
Reaction score
297
Maybe problem isnt webhost or wordpress, but your pc?

You checked it with latest av?

Pw is safed by browser? try to change pw from other pc
 
M

matapples01

Regular Member
Joined
May 15, 2008
Messages
358
Reaction score
210
if you just downloaded the theme for free somewhere, there could be "unwanted" code in your theme causing your issue. Try changing themes (to something created by someone other than your current theme) and see if the problems goes away.
Posted via Mobile Device
 
B

borrein

Newbie
Joined
Nov 8, 2009
Messages
13
Reaction score
7
Might want to also look for sh.php and o.php within the public root of your hosting service. These two filenames are the most common for injected scripts. If those arent' there and the only two plugins you're using are mentioned above, try swapping out the theme as mentioned. If you still get hacked, see about redownloading the plugins in question from a threat on here where people aren't complaining about getting hacked.

Secondly, if your wordpress installation was downloaded from soemwhere other than wordpress.org, try fixing that first.
 
G

gh0st

BANNED
Joined
Feb 7, 2009
Messages
92
Reaction score
47
its called a shell. doesn't matter about your pass, he can easily change stuff with a shell, its like having a backdoor to your files + sql db.

By now he probably has about 10-20 of these on your host if he is smart. You can download public html folder and scan with av. If i were you id just delete wp, reinstall it and link it to the existing db.
 
B

borrein

Newbie
Joined
Nov 8, 2009
Messages
13
Reaction score
7
gh0st said:
its called a shell. doesn't matter about your pass, he can easily change stuff with a shell, its like having a backdoor to your files + sql db.

By now he probably has about 10-20 of these on your host if he is smart. You can download public html folder and scan with av. If i were you id just delete wp, reinstall it and link it to the existing db.
Click to expand...

Thanks, wasn't sure they were called shells. Makes sense *smacks self on forehead* don't I feel stupid now.

I've actually saved a couple of those from a social network I administer. I find them useful when working on other people's websites. After I upload everything and have it set, I back everything up so I have a copy of the site myself. If they don't pay me, oopsiedoodle. There goes the site.

I agree though, it might be best to listen to the guy above this post.
 
freeufcdotinfo

freeufcdotinfo

Power Member
Joined
Jun 12, 2008
Messages
685
Reaction score
156
adamster hit the nail on the head - it was theme, last thing I would have thought of, changed back to standard theme and no problems...
 
luhasr

luhasr

Elite Member
Joined
Feb 20, 2009
Messages
4,370
Reaction score
475
Just check your plugins folders.It should be 777..............may be its one of the problem.
 
Advertise on BHW
You must log in or register to reply here.
Sign up now!

Main Menu

Home Main Forum List Black Hat SEO White Hat SEO BHW Newbie Guide Blogging Black Hat Tools Social Networking Downloads

Marketplace

Content / Copywriting Hosting Images, Logos & Videos Proxies For Sale SEO - Link building SEO - Packages Social Media Web Design Misc

Making Money

Affiliate Programs Hire a Freelancer Making Money Pay Per Click Site Flipping

BlackHatWorld

BHW Merch Forum Suggestions & Feedback Introductions Lounge Shit List

Other

Domain Name Forum IM Journeys Web Hosting Newsletter
Top