1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Autoblog getting hacked WTF

Discussion in 'Blogging' started by freeufcdotinfo, Nov 18, 2009.

  1. freeufcdotinfo

    freeufcdotinfo Power Member

    Joined:
    Jun 12, 2008
    Messages:
    685
    Likes Received:
    155
    Changed pass word few time but still seems to get rouge posts from these dudes.

    Could it be something to do with the plug ins..
     
  2. oldenstylehats

    oldenstylehats Elite Member Premium Member

    Joined:
    Apr 10, 2008
    Messages:
    1,893
    Likes Received:
    1,196
    It could be the plugins or it could be that your install was injected a while ago and they are just getting around to utilizing the scripts they installed at that point in time. You may want to check out one of the WP security plugins.
     
  3. freeufcdotinfo

    freeufcdotinfo Power Member

    Joined:
    Jun 12, 2008
    Messages:
    685
    Likes Received:
    155
    The hacks names is NathanWilliams any ideas
     
  4. Kingfresh

    Kingfresh Regular Member

    Joined:
    Jul 8, 2009
    Messages:
    374
    Likes Received:
    295
    Update your wordpress ;)

    better is to delete each plugin and installing them again, step by step

    So like if you install plugin no4 and you get hacked --- > you know that plugin4 causes this ;)
     
  5. freeufcdotinfo

    freeufcdotinfo Power Member

    Joined:
    Jun 12, 2008
    Messages:
    685
    Likes Received:
    155
    Latest version - I only have MaxBlogPress Ping Optimizer and WP-o-Matic

    anyone had any probs with these.
     
  6. Kingfresh

    Kingfresh Regular Member

    Joined:
    Jul 8, 2009
    Messages:
    374
    Likes Received:
    295
    Maybe problem isnt webhost or wordpress, but your pc?

    You checked it with latest av?

    Pw is safed by browser? try to change pw from other pc
     
  7. adamster

    adamster Regular Member

    Joined:
    Nov 1, 2008
    Messages:
    209
    Likes Received:
    83
    theme
     
    • Thanks Thanks x 1
  8. freeufcdotinfo

    freeufcdotinfo Power Member

    Joined:
    Jun 12, 2008
    Messages:
    685
    Likes Received:
    155
    No spyware - or Virus

    Why theme
     
  9. matapples01

    matapples01 Regular Member

    Joined:
    May 15, 2008
    Messages:
    358
    Likes Received:
    208
    if you just downloaded the theme for free somewhere, there could be "unwanted" code in your theme causing your issue. Try changing themes (to something created by someone other than your current theme) and see if the problems goes away.
    Posted via Mobile Device
     
  10. borrein

    borrein Newbie

    Joined:
    Nov 8, 2009
    Messages:
    13
    Likes Received:
    7
    Might want to also look for sh.php and o.php within the public root of your hosting service. These two filenames are the most common for injected scripts. If those arent' there and the only two plugins you're using are mentioned above, try swapping out the theme as mentioned. If you still get hacked, see about redownloading the plugins in question from a threat on here where people aren't complaining about getting hacked.

    Secondly, if your wordpress installation was downloaded from soemwhere other than wordpress.org, try fixing that first.
     
  11. gh0st

    gh0st BANNED BANNED Premium Member

    Joined:
    Feb 7, 2009
    Messages:
    92
    Likes Received:
    47
    its called a shell. doesn't matter about your pass, he can easily change stuff with a shell, its like having a backdoor to your files + sql db.

    By now he probably has about 10-20 of these on your host if he is smart. You can download public html folder and scan with av. If i were you id just delete wp, reinstall it and link it to the existing db.
     
  12. borrein

    borrein Newbie

    Joined:
    Nov 8, 2009
    Messages:
    13
    Likes Received:
    7
    Thanks, wasn't sure they were called shells. Makes sense *smacks self on forehead* don't I feel stupid now.

    I've actually saved a couple of those from a social network I administer. I find them useful when working on other people's websites. After I upload everything and have it set, I back everything up so I have a copy of the site myself. If they don't pay me, oopsiedoodle. There goes the site.

    I agree though, it might be best to listen to the guy above this post.
     
  13. freeufcdotinfo

    freeufcdotinfo Power Member

    Joined:
    Jun 12, 2008
    Messages:
    685
    Likes Received:
    155
    adamster hit the nail on the head - it was theme, last thing I would have thought of, changed back to standard theme and no problems...
     
  14. luhasr

    luhasr Jr. VIP Jr. VIP Premium Member

    Joined:
    Feb 20, 2009
    Messages:
    3,326
    Likes Received:
    316
    Just check your plugins folders.It should be 777..............may be its one of the problem.