Website Admin Panel get HACKED PLEASE HELP ME!

Discussion in 'BlackHat Lounge' started by hushpapa, Sep 30, 2012.

  1. hushpapa

    hushpapa Junior Member

    Joined:
    Jun 2, 2012
    Messages:
    139
    Likes Received:
    29
    hi guys i need your help there i just login to my website and check my panel and shock that some of the details got erased and rewriten so what i do:

    1. change the pass and user name
    2. report to hosting
    3. check the last IP logged

    what i need now is

    "a pop up box admin login"

    is there something like this?

    example: when i logged to my admin panel a pop up box will appear and i must put my admin username and pass or just even password to unlock the page so i can use it.

    please help can give me any script like

    regards

    hushpapa

    PS: please help me :(
     
  2. G-S-T

    G-S-T Executive VIP Jr. VIP

    Joined:
    Jan 20, 2011
    Messages:
    1,928
    Likes Received:
    8,938
    Occupation:
    Full time IM
    Location:
    Heavy in the game
    you need to take this matter up with your hosting company
     
  3. macdonjo3

    macdonjo3 Jr. VIP Jr. VIP

    Joined:
    Nov 8, 2009
    Messages:
    5,790
    Likes Received:
    4,471
    Location:
    Toronto
    As G-S-T mentioned, if you have a host that is any good, they'll help you with everything you need.
     
  4. admsites

    admsites Newbie

    Joined:
    May 12, 2016
    Messages:
    17
    Likes Received:
    0
    ask for help the hosting company
     
  5. blogzandstuff

    blogzandstuff Elite Member

    Joined:
    Jan 1, 2015
    Messages:
    8,596
    Likes Received:
    4,546
    Occupation:
    blog creator
    Location:
    UK
    talk to you host to get problem sorted, then install extra security


    i use these below free plugins from wordpress.org and get hack attempts at at least 100 per day - all fail


    admin-username-changer


    limit-login-attempts ( set to your ip for login and only allow 1 attempt )
     
  6. mirrorer

    mirrorer Jr. VIP Jr. VIP

    Joined:
    Jan 30, 2009
    Messages:
    1,311
    Likes Received:
    1,127
    Why the f*ck do you bump a 4 years old thread with useless response ?
     
    Last edited: May 12, 2016
  7. blogzandstuff

    blogzandstuff Elite Member

    Joined:
    Jan 1, 2015
    Messages:
    8,596
    Likes Received:
    4,546
    Occupation:
    blog creator
    Location:
    UK
    It must be getting late, i only looked at the last post and didn't see the date - don't normally do that;)
     
  8. mirrorer

    mirrorer Jr. VIP Jr. VIP

    Joined:
    Jan 30, 2009
    Messages:
    1,311
    Likes Received:
    1,127
    Same here.
    I quoted the wrong person :p
     
    • Thanks Thanks x 1
  9. 365pricefinder

    365pricefinder Regular Member

    Joined:
    Mar 1, 2016
    Messages:
    225
    Likes Received:
    33
    Gender:
    Male
    Location:
    United Kingdom
    First thing first go to your .htaccess file and make the following changes which will allow you to login only from you ip:

    <IfModule mod_rewrite.c>
    RewriteEngine on
    RewriteCond %{REQUEST_URI} ^(.*)?wp-login\.php(.*)$ [OR]
    RewriteCond %{REQUEST_URI} ^(.*)?wp-admin$
    RewriteCond %{REMOTE_ADDR} !^123\.123\.123\.123$
    RewriteRule ^(.*)$ - [R=403,L]
    </IfModule>