1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Wordpress site got hacked

Discussion in 'General Programming Chat' started by sWesUn, Sep 12, 2010.

  1. sWesUn

    sWesUn Regular Member

    Joined:
    Mar 12, 2009
    Messages:
    208
    Likes Received:
    28
    dominatem.info

    This was my cpa-lea-d site that brings me income, and some kuwaiti idiot hacked it.

    Now, i have access to the cpanel, and all the files are still there, but I can't access the wordpress portion of it through wp-admin login.

    What can be done to get rid of this hack/idiot quickly?

    Thanks for any suggestions guys.
     
  2. Dadelius

    Dadelius Regular Member

    Joined:
    Mar 31, 2010
    Messages:
    455
    Likes Received:
    313
    Occupation:
    Internet Marketer
    Location:
    Cyberspace and the gym mostly!
    quickest way is to restore it from your backup files. In case you didn't back it up, your hosting company does it once weekly usually.

    They may charge you $15.00
     
  3. easycash27

    easycash27 Senior Member

    Joined:
    Oct 13, 2009
    Messages:
    832
    Likes Received:
    545
    Occupation:
    Internet Marketer
    Location:
    Heaven
    • Thanks Thanks x 1
  4. sWesUn

    sWesUn Regular Member

    Joined:
    Mar 12, 2009
    Messages:
    208
    Likes Received:
    28
    I have access to ftp too, but I didn't do any back ups on my own, so i'm assuming there are no automatic back ups that were created either. I can and will contact my hoster and ask them for a restore, but is there anything else that i can do?

    Thanks guys.
     
  5. gapster

    gapster Registered Member

    Joined:
    Aug 6, 2010
    Messages:
    61
    Likes Received:
    32
    Occupation:
    IM full time
    Location:
    USA NW
    Did a restore with HG this way after a db crash. Don't remember the cost, if any.

    Right now looks like they replaced your index file. You may be able to take control back by the above and/or:

    1) go in thru CPanel and insert a new index.html page as a temp. (reputation saver step for visitors. WP uses index.php so this is a temp and will need removed. Just put "we'll be back" on it or something)

    2) replace WP files with fresh uploads including theme and plugins (doesn't solve db issues though depending how deep hack went).

    3) double check your .htaccess file for hack artifacts. (should look like WP install example file or check against one of your other sites)

    4) if these do not resolve, you may be forced into option quoted from Dadelius. (actually still a prefered option as the host may have been hacked, not just you, and it avoids 1 -3 and insecure feeling you missed something)

    Obviously change passes and look for security issues at WP forums. Not sure of your level of WP abilities, so please excuse if you already thought of all this.

    Good luck.
     
    • Thanks Thanks x 1
  6. sWesUn

    sWesUn Regular Member

    Joined:
    Mar 12, 2009
    Messages:
    208
    Likes Received:
    28
    hosting company restored the site through back ups. Issue is resolved. Thank you all for giving me some advice.
     
  7. ruworth

    ruworth BANNED BANNED

    Joined:
    May 17, 2010
    Messages:
    251
    Likes Received:
    71
    This happened to me and the hacker just changed my admin email and password, i didnt think of asking my host for a backup and wiped the site and started over :(

    Glad to hear that you got it sorted.
     
  8. deziner

    deziner Newbie

    Joined:
    Oct 22, 2010
    Messages:
    25
    Likes Received:
    15
    get the backup from your hosting guys,