| Posted by jani, 12-12-2010, 02:36 PM | | My wordpress blog www.dezineweblog.com has been hacked.
I tried resetting my password but not getting the emails, means the hacker has changed the email ID too,
so I went to PhpMyAdmin > wp_users > changed email ID & password and user login but still I am not able to login
Can anyone please tell me how to reset my ID and password?
Thanks
|
| Posted by Srvify, 12-12-2010, 02:38 PM | | Did you use an md5 hash when changing the password through the database?
|
| Posted by jani, 12-12-2010, 02:40 PM | | Nope, I am hearing about md5 thing for the first time.
How can I do that md4 hash thing.. can you please guide?
|
| Posted by Srvify, 12-12-2010, 02:45 PM | | Go here:
http://www.miraclesalad.com/webtools/md5.php
Type in the password you want and click on the md5 button. It will generate a string, take what it generated and place it in the password field for your user in the database.
|
| Posted by Steven, 12-12-2010, 02:59 PM | | Several methods of resetting it can be found here: http://codex.wordpress.org/Resetting_Your_Password
|
| Posted by jani, 12-12-2010, 03:01 PM | | Thanks, I can login to my dashboard now. Thank God all the posts and comments are there.
Now how can I get rid of the index page where hacker has typed bad message?
|
| Posted by M Bacon, 12-12-2010, 03:02 PM | | Make sure that you update your blogs. 3.0, 3.01, and 3.02 is vulnerable.
Just go into your file manager or ftp and remove it and replace it with the index.php file from wordpress.org. You may have to replace more than one file.
|
| Posted by jani, 12-12-2010, 03:14 PM | | Thanks for all your help friends. My blog is back now but I need help on some more questions.
1. The hacker did not change the index file in public_html but he changed the index file of my theme, which is placed in public_html > wp-content > theme > composito
Means he had access to those folders or permissions to edit those files right?
I had 7 5 5 permission for that folder, was it not right? I have changed it to 7 5 4 - What permission should I set?
2. What are the security steps do you suggest me to protect my sites from hackers? I know hackers are very smart people but at least there would be some ways to make hacking on our site more difficult?
Update: I am using version 3.0.3 of Wordpress.
Last edited by jani; 12-12-2010 at 03:22 PM.
|
| Posted by jani, 12-12-2010, 06:07 PM | | I run this wordpress blog http://www.wittymag.com. It was all working fine but since one of my other wordpress blog got hacked I decided to change password of this blog to protect it.
I changed password and it got changed successfully, but after that when it asked to re-login it is NOT accepting the new password that I set. I tried a lot but no luck.
Then I tried to change password through PhpMyAdmin by using Md5 hash password but it is no changing from there too.
Then I edited the functions.php file of the theme I am using and set the password but again no luck at all. It is just not accepting any password.
I think my sites are under hackers attacks because I got email from wordpress@wittymag.com saying Password Lost and Changed for user: admin
Same email I got for my other blog dezineweblog.com and I was unable to login after that.
And this email account wordpress@wittymag.com does not exist.
Can anyone please help me how can I login to my blog?
|
| Posted by M Bacon, 12-12-2010, 06:23 PM | | I suggest you to download this and install it.
http://wordpress.org/extend/plugins/wp-security-scan/
It may help you quite a bit.
|
| Posted by WireNine, 12-12-2010, 06:23 PM | | Are you using the latest stable 3.0.3 release?
|
| Posted by Sparrow-Sean, 12-12-2010, 06:26 PM | | Do you have phpMyAdmin access?
|
| Posted by Sparrow-Sean, 12-12-2010, 06:40 PM | | If you are changing your password via 'phpMyAdmin' be sure that if you change it to select the MD5 Hash from the drop down before saving.
|
| Posted by luisifer, 12-13-2010, 02:11 AM | | Reset all your passwords now, including FTP, control panel account, DB user etc.
As for the password reset problem in phpMyAdmin, make sure you follow the steps correctly.
http://codex.wordpress.org/Resetting_Your_Password
It's also best to ask help from your webhost.
|
| Posted by luisifer, 12-13-2010, 02:19 AM | | Theme folder should have permission 755.
As the hackers successfully modified your index file, it's best for you to reset all passwords, including your WP admin, hosting control panel, FTP, DB passwords, and emails. He might got access to any of them.
|
| Posted by jani, 12-13-2010, 03:04 AM | | Yes, I am using latest 3.0.3 version of wordpress.
Yes, I can access. But when I change my password in phpmyadmin and hit the GO button, and when I re-open that field my password is not same, it is different everytime I open that password field.
I don't know if it is safe to show that long password here or not but there is a specific password that replaces all my passwords everytime I open the password field.
Yes, I am selecting MD5 from the drop down menu and writing my password then but after saving it - it changes automatically
I think I will have to re-install wordpress
|
| Posted by jani, 12-13-2010, 03:26 AM | | Update: I changed email ID from phpmyadmin and when I click on Reset Password and enter email ID then it sends me email but when I click on the link (given in email) it says " Sorry, that key does not appear to be valid."
|
|
 Add to Favourites
 Print this Article
|
