Autoblog getting hacked WTF

freeufcdotinfo

Power Member
Jun 12, 2008
685
157
Changed pass word few time but still seems to get rouge posts from these dudes.

Could it be something to do with the plug ins..
 
Changed pass word few time but still seems to get rouge posts from these dudes.

Could it be something to do with the plug ins..
It could be the plugins or it could be that your install was injected a while ago and they are just getting around to utilizing the scripts they installed at that point in time. You may want to check out one of the WP security plugins.
 
Update your wordpress ;)

better is to delete each plugin and installing them again, step by step

So like if you install plugin no4 and you get hacked --- > you know that plugin4 causes this ;)
 
Latest version - I only have MaxBlogPress Ping Optimizer and WP-o-Matic

anyone had any probs with these.
 
Maybe problem isnt webhost or wordpress, but your pc?

You checked it with latest av?

Pw is safed by browser? try to change pw from other pc
 
if you just downloaded the theme for free somewhere, there could be "unwanted" code in your theme causing your issue. Try changing themes (to something created by someone other than your current theme) and see if the problems goes away.
Posted via Mobile Device
 
Might want to also look for sh.php and o.php within the public root of your hosting service. These two filenames are the most common for injected scripts. If those arent' there and the only two plugins you're using are mentioned above, try swapping out the theme as mentioned. If you still get hacked, see about redownloading the plugins in question from a threat on here where people aren't complaining about getting hacked.

Secondly, if your wordpress installation was downloaded from soemwhere other than wordpress.org, try fixing that first.
 
its called a shell. doesn't matter about your pass, he can easily change stuff with a shell, its like having a backdoor to your files + sql db.

By now he probably has about 10-20 of these on your host if he is smart. You can download public html folder and scan with av. If i were you id just delete wp, reinstall it and link it to the existing db.
 
its called a shell. doesn't matter about your pass, he can easily change stuff with a shell, its like having a backdoor to your files + sql db.

By now he probably has about 10-20 of these on your host if he is smart. You can download public html folder and scan with av. If i were you id just delete wp, reinstall it and link it to the existing db.

Thanks, wasn't sure they were called shells. Makes sense *smacks self on forehead* don't I feel stupid now.

I've actually saved a couple of those from a social network I administer. I find them useful when working on other people's websites. After I upload everything and have it set, I back everything up so I have a copy of the site myself. If they don't pay me, oopsiedoodle. There goes the site.

I agree though, it might be best to listen to the guy above this post.
 
adamster hit the nail on the head - it was theme, last thing I would have thought of, changed back to standard theme and no problems...
 
Just check your plugins folders.It should be 777..............may be its one of the problem.
 
Back
Top
AdBlock Detected

We get it, advertisements are annoying!

Sure, ad-blocking software does a great job at blocking ads, but it also blocks useful features and essential functions on BlackHatWorld and other forums. These functions are unrelated to ads, such as internal links and images. For the best site experience please disable your AdBlocker.

I've Disabled AdBlock