War Room

Go Back   WarriorForum - Internet Marketing Forums > The Warrior Forum > Main Internet Marketing Discussion Forum

Featured Warrior Special Offer...
"Members Of The *War Room* Discover Secrets To Immediate Success!"
Reply
 
LinkBack Thread Tools
Old 11-10-2008, 11:49 AM   #1
Advanced Warrior
War Room Member
 
Spencer Jones's Avatar
 
Join Date: Feb 2006
Location: Kerala - India
Posts: 848
Thanks: 86
Thanked 19 Times in 16 Posts
Contact Info
Send a message via Skype™ to Spencer Jones
Default Wordpress Blog Hacked...

Yesterday I had someone new register to my wordpress blog with the username "admin" and then reset the password and changed it. I am not able to access the blog with my username and password now.

And today the same thing happened to another one of my blogs, and the hacker was trying the same technique, but this time, my admin username wasn't admin and so the hacker failed.

Then as a precaution I went on and unchecked the setting that allow anyone to register inside my blogs. So all the rest of my blogs must be secure now.

Anyway I would like to know how to get that hacked blog back to my hands?

Thanks
Spencer Jones

Dr.Spencer Jones
Make 10K In A Week Guaranteed | Jesus Christ - The Only Solution To All Your Problems
Want Your Boring Wordpress Blogs To Look Like - Siddha Videos or Divine Verses?
Atahualpa Theme Cuztomization, Anyway You Want For Just $97 - PM To Order...
Spencer Jones is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-10-2008, 11:51 AM   #2
Senior Warrior Member
War Room Member
 
BlueSquares's Avatar
 
Join Date: May 2008
Location: South Florida
Posts: 1,822
Blog Entries: 1
Thanks: 105
Thanked 377 Times in 167 Posts
Default Re: Wordpress Blog Hacked...

Sorry! In order to help, what version of Wordpress are you running?

Wordpress Salesletter Theme Create Salespages, Presells & PPC/CPA Landing Pages in Wordpress
PHP Link Cloaker: Hide Affiliate Links & Track Clicks. Secure, Web-Based, Admin Area. Unlimited Site License.
Buy Me a Beer
BlueSquares is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-10-2008, 11:57 AM   #3
Advanced Warrior
War Room Member
 
Spencer Jones's Avatar
 
Join Date: Feb 2006
Location: Kerala - India
Posts: 848
Thanks: 86
Thanked 19 Times in 16 Posts
Contact Info
Send a message via Skype™ to Spencer Jones
Default Re: Wordpress Blog Hacked...

It's wordpress Version 2.6.1. Yes I do have access to the server...

Dr.Spencer Jones
Make 10K In A Week Guaranteed | Jesus Christ - The Only Solution To All Your Problems
Want Your Boring Wordpress Blogs To Look Like - Siddha Videos or Divine Verses?
Atahualpa Theme Cuztomization, Anyway You Want For Just $97 - PM To Order...
Spencer Jones is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-10-2008, 11:58 AM   #4
PhpMembersScript.com
War Room Member
 
TheRichJerksNet's Avatar
 
Join Date: Aug 2008
Location: South Carolina, USA
Posts: 4,871
Blog Entries: 2
Thanks: 497
Thanked 819 Times in 528 Posts
Social Networking View Member's Myspace Profile  View Member's FaceBook Profile  View Member's Twitter Profile  View Member's YouTube Profile
Contact Info
Send a message via Yahoo to TheRichJerksNet
Default Re: Wordpress Blog Hacked...

Spencer,
Grab my WSO before I remove it ... Was fixing to do just that ..

James

Article Directory/Auto Syndication Coming | Upto 1800+ Authority Bookmarks WSO - Starts $8.77

Christmas PLR Pack - Articles, Templates, Graphics, Resources and More $8.97 MRR/RR

Block SideWiki | Membership Script | WordPress Security | Facebook App Coming Soon
TheRichJerksNet is online now  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-10-2008, 11:59 AM   #5
Senior Warrior Member
War Room Member
 
BlueSquares's Avatar
 
Join Date: May 2008
Location: South Florida
Posts: 1,822
Blog Entries: 1
Thanks: 105
Thanked 377 Times in 167 Posts
Default Re: Wordpress Blog Hacked...

Open up PHPMyAdmin via your control panel. Navigate to the users database, change the admin name and password. When saving the password, select MD5. You will have access to your WP folder again.

More detail...How to Reset Wordpress Admin Password

Wordpress Salesletter Theme Create Salespages, Presells & PPC/CPA Landing Pages in Wordpress
PHP Link Cloaker: Hide Affiliate Links & Track Clicks. Secure, Web-Based, Admin Area. Unlimited Site License.
Buy Me a Beer
BlueSquares is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
The Following User Says Thank You to BlueSquares For This Useful Post:
Old 11-10-2008, 12:01 PM   #6
Programmer Extraordinaire
War Room Member
 
Join Date: Jun 2007
Location: Olathe, KS USA.
Posts: 673
Thanks: 37
Thanked 28 Times in 24 Posts
Social Networking View Member's FaceBook Profile 
Default Re: Wordpress Blog Hacked...

You don't have to go through the hassle of reinstalling anything.

Go into your PHPMyAdmin and navigate to the wp_users table for the blog in question. Find the admin user and click on Edit to edit that row. In the functions dropdown, select "MD5" then for the value enter in the password that you want to change it to. Click Save and you should now be able to enter your blog with that password.

As long as user registration is disabled, you shouldn't have that problem any more. That doesn't mean your blog is completely secured, but you won't have that specific problem again.

I'm tired of my signature... Deleted.
Bishop81 is online now  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
The Following User Says Thank You to Bishop81 For This Useful Post:
Old 11-10-2008, 12:02 PM   #7
Advanced Warrior
War Room Member
 
Spencer Jones's Avatar
 
Join Date: Feb 2006
Location: Kerala - India
Posts: 848
Thanks: 86
Thanked 19 Times in 16 Posts
Contact Info
Send a message via Skype™ to Spencer Jones
Default Re: Wordpress Blog Hacked...

Anyway to edit the users and admin via FTP ?

Dr.Spencer Jones
Make 10K In A Week Guaranteed | Jesus Christ - The Only Solution To All Your Problems
Want Your Boring Wordpress Blogs To Look Like - Siddha Videos or Divine Verses?
Atahualpa Theme Cuztomization, Anyway You Want For Just $97 - PM To Order...
Spencer Jones is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-10-2008, 12:04 PM   #8
David Black
 
mookinman's Avatar
 
Join Date: Jan 2008
Location: Birmingham, United Kingdom.
Posts: 324
Thanks: 36
Thanked 42 Times in 13 Posts
Default Re: Wordpress Blog Hacked...

Somebody has hacked one of my wordpress blogs as well - I keep getting this "Casino En Ligne" link appearing in my blogroll- every time I delete it, it just comes back!

mookinman is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-10-2008, 12:10 PM   #9
Advanced Warrior
War Room Member
 
Spencer Jones's Avatar
 
Join Date: Feb 2006
Location: Kerala - India
Posts: 848
Thanks: 86
Thanked 19 Times in 16 Posts
Contact Info
Send a message via Skype™ to Spencer Jones
Default Re: Wordpress Blog Hacked...

Any other ways?

I don't have access to the phpmyadmin of this particular blog, only have access to ftp area. Since I got this domain as part of a competition I was participating and is actually a domain under a main account which is owned by someone else...

Dr.Spencer Jones
Make 10K In A Week Guaranteed | Jesus Christ - The Only Solution To All Your Problems
Want Your Boring Wordpress Blogs To Look Like - Siddha Videos or Divine Verses?
Atahualpa Theme Cuztomization, Anyway You Want For Just $97 - PM To Order...
Spencer Jones is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-10-2008, 12:48 PM   #10
HyperActive Warrior
 
Jassa's Avatar
 
Join Date: Feb 2007
Location: United Kingdom.
Posts: 103
Thanks: 9
Thanked 9 Times in 8 Posts
Social Networking View Member's Twitter Profile  View Member's YouTube Profile
Contact Info
Send a message via Skype™ to Jassa
Default Re: Wordpress Blog Hacked...

Surely, that will be the reason then. If you won it in a competition, the competition was probably conceived to implement some 'tricky business' - or am I just being paranoid?

2. re: security of blogs, I'd always understood that we should delete the install.php file as soon as we have finished installing.

Get To The Top In Google With Google Slapper ...it actually works very nicely :)

"Life is a lot like jazz... it's best when you improvise" - George Gershwin
Jassa is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-10-2008, 01:48 PM   #11
Advanced Warrior
 
zeurois's Avatar
 
Join Date: Feb 2007
Posts: 520
Thanks: 23
Thanked 22 Times in 8 Posts
Default Re: Wordpress Blog Hacked...

Problem solved?

If not, PM me. I'll help you reset your password.

zeurois is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-10-2008, 02:11 PM   #12
Senior Warrior Member
War Room Member
 
BlueSquares's Avatar
 
Join Date: May 2008
Location: South Florida
Posts: 1,822
Blog Entries: 1
Thanks: 105
Thanked 377 Times in 167 Posts
Default Re: Wordpress Blog Hacked...

Quote:
Originally Posted by mookinman View Post
Somebody has hacked one of my wordpress blogs as well - I keep getting this "Casino En Ligne" link appearing in my blogroll- every time I delete it, it just comes back!
WordPress › Support "Casino en Ligne" adding itself to my blogroll

Wordpress Salesletter Theme Create Salespages, Presells & PPC/CPA Landing Pages in Wordpress
PHP Link Cloaker: Hide Affiliate Links & Track Clicks. Secure, Web-Based, Admin Area. Unlimited Site License.
Buy Me a Beer
BlueSquares is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-10-2008, 02:56 PM   #13
Senior Warrior Member
War Room Member
 
Greg Cooksley's Avatar
 
Join Date: Jan 2007
Location: Johannesburg , South Africa.
Posts: 1,983
Thanks: 382
Thanked 93 Times in 23 Posts
Default Re: Wordpress Blog Hacked...

Quote:
Originally Posted by TheRichJerksNet View Post
Spencer,
Grab my WSO before I remove it ... Was fixing to do just that
..

James
Hey Spencer,

If you really want to protect your WP blog in future you have
to get the product that James is offering on his WSO above....

He really knows what he's talking about....

Regards

Greg

Greg Cooksley is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-10-2008, 03:21 PM   #14
Programmer Extraordinaire
War Room Member
 
Join Date: Jun 2007
Location: Olathe, KS USA.
Posts: 673
Thanks: 37
Thanked 28 Times in 24 Posts
Social Networking View Member's FaceBook Profile 
Default Re: Wordpress Blog Hacked...

Since you have ftp access, the only thing you can do is to delete the user and and re-register. You can do this with PHP. You will have to get your db connection details from the wp-config.php file, and then use them to make your calls to the database.

Or, you can update that row in the database in the same fashion. Just write a php page that calls the db and updates the record to whatever you want the password to be.

I'm tired of my signature... Deleted.
Bishop81 is online now  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-10-2008, 04:18 PM   #15
PhpMembersScript.com
War Room Member
 
TheRichJerksNet's Avatar
 
Join Date: Aug 2008
Location: South Carolina, USA
Posts: 4,871
Blog Entries: 2
Thanks: 497
Thanked 819 Times in 528 Posts
Social Networking View Member's Myspace Profile  View Member's FaceBook Profile  View Member's Twitter Profile  View Member's YouTube Profile
Contact Info
Send a message via Yahoo to TheRichJerksNet
Default Re: Wordpress Blog Hacked...

Quote:
Originally Posted by Greg Cooksley View Post
Hey Spencer,

If you really want to protect your WP blog in future you have
to get the product that James is offering on his WSO above....

He really knows what he's talking about....

Regards

Greg
Hey Greg,
Apprciate you mentioning me there...

Thanks,
James

Article Directory/Auto Syndication Coming | Upto 1800+ Authority Bookmarks WSO - Starts $8.77

Christmas PLR Pack - Articles, Templates, Graphics, Resources and More $8.97 MRR/RR

Block SideWiki | Membership Script | WordPress Security | Facebook App Coming Soon
TheRichJerksNet is online now  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-10-2008, 04:43 PM   #16
HyperActive Warrior
War Room Member
 
Join Date: Apr 2007
Location: Ohio, USA.
Posts: 198
Thanks: 13
Thanked 17 Times in 15 Posts
Default Re: Wordpress Blog Hacked...

I want to piggyback on Greg's comment. I use wordpress as the platform for all of my sites. The recent increase in wordpress hacks has had me nervous.

I picked up James' WSO and, while I'm no techno geek, I'm pretty confident my sites won't be getting hacked...once I get around to updating them all with the procedures in the WSO. [Where was the back end offer for paid upgrade services, James? ]

I'm not trying to be a shill here. I don't know James from Adam, but his product is top notch and should solve your wordpress issues going forward.
riff is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-10-2008, 06:03 PM   #17
PhpMembersScript.com
War Room Member
 
TheRichJerksNet's Avatar
 
Join Date: Aug 2008
Location: South Carolina, USA
Posts: 4,871
Blog Entries: 2
Thanks: 497
Thanked 819 Times in 528 Posts
Social Networking View Member's Myspace Profile  View Member's FaceBook Profile  View Member's Twitter Profile  View Member's YouTube Profile
Contact Info
Send a message via Yahoo to TheRichJerksNet
Default Re: Wordpress Blog Hacked...

Hi riff,
Thanks .. appreciate it

Actually did not add any backend offer on WPS .. Thought about it but figure I would wait for v2 which will come out soon and v1 owners will get a huge discount..

So before I pull WPS for good, grab it now as I do plan on pulling v1 real soon..

James

Article Directory/Auto Syndication Coming | Upto 1800+ Authority Bookmarks WSO - Starts $8.77

Christmas PLR Pack - Articles, Templates, Graphics, Resources and More $8.97 MRR/RR

Block SideWiki | Membership Script | WordPress Security | Facebook App Coming Soon
TheRichJerksNet is online now  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-10-2008, 06:32 PM   #18
SmokinMo
War Room Member
 
proapc's Avatar
 
Join Date: Jun 2005
Location: Sun Valley, Idaho, USA.
Posts: 469
Thanks: 22
Thanked 18 Times in 16 Posts
Social Networking View Member's Twitter Profile  View Member's YouTube Profile
Contact Info
Send a message via AIM to proapc Send a message via Skype™ to proapc
Default Re: Wordpress Blog Hacked...

I searched the WSO and could not locate James' WSO. Does anyone have a link to it?

FREE MP3 Program To Help You Relax And Sleep

http://www.CDBN.com
proapc is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-10-2008, 06:42 PM   #19
PhpMembersScript.com
War Room Member
 
TheRichJerksNet's Avatar
 
Join Date: Aug 2008
Location: South Carolina, USA
Posts: 4,871
Blog Entries: 2
Thanks: 497
Thanked 819 Times in 528 Posts
Social Networking View Member's Myspace Profile  View Member's FaceBook Profile  View Member's Twitter Profile  View Member's YouTube Profile
Contact Info
Send a message via Yahoo to TheRichJerksNet
Default Re: Wordpress Blog Hacked...

Its the link in my sig ...

2nd link

James

Article Directory/Auto Syndication Coming | Upto 1800+ Authority Bookmarks WSO - Starts $8.77

Christmas PLR Pack - Articles, Templates, Graphics, Resources and More $8.97 MRR/RR

Block SideWiki | Membership Script | WordPress Security | Facebook App Coming Soon
TheRichJerksNet is online now  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-10-2008, 06:49 PM   #20
Advanced Warrior
War Room Member
 
Spencer Jones's Avatar
 
Join Date: Feb 2006
Location: Kerala - India
Posts: 848
Thanks: 86
Thanked 19 Times in 16 Posts
Contact Info
Send a message via Skype™ to Spencer Jones
Default Re: Wordpress Blog Hacked...

Hello Peter, I just sent you a PM.

Hello Bishop81, I have access to the wp-config file. Also I can see the database name, user and password. But since I don't know PHP, don't know how to go on from there... Any more help, the ftp way?

Thanks & Regards
Spencer Jones

Dr.Spencer Jones
Make 10K In A Week Guaranteed | Jesus Christ - The Only Solution To All Your Problems
Want Your Boring Wordpress Blogs To Look Like - Siddha Videos or Divine Verses?
Atahualpa Theme Cuztomization, Anyway You Want For Just $97 - PM To Order...
Spencer Jones is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-11-2008, 05:46 PM   #21
Advanced Warrior
War Room Member
 
Spencer Jones's Avatar
 
Join Date: Feb 2006
Location: Kerala - India
Posts: 848
Thanks: 86
Thanked 19 Times in 16 Posts
Contact Info
Send a message via Skype™ to Spencer Jones
Default Re: Wordpress Blog Hacked...

isn't there any way?

Dr.Spencer Jones
Make 10K In A Week Guaranteed | Jesus Christ - The Only Solution To All Your Problems
Want Your Boring Wordpress Blogs To Look Like - Siddha Videos or Divine Verses?
Atahualpa Theme Cuztomization, Anyway You Want For Just $97 - PM To Order...
Spencer Jones is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-11-2008, 07:04 PM   #22
ThoughtSearch.com
War Room Member
 
Eric Lorence's Avatar
 
Join Date: Jan 2008
Location: Alpharetta,GA, USA.
Posts: 1,353
Thanks: 392
Thanked 183 Times in 132 Posts
Social Networking View Member's FaceBook Profile  View Member's Twitter Profile 
Default Re: Wordpress Blog Hacked...

Use this code, just enter it into your admin password table in PHPmyadmin:

Quote:
21232f297a57a5a743894a0e4a801fc3
It will reset your password to "admin"- (MD5 hash)

There are also some free Wordpress security resources here:

BlogSecurity Blog Archive WordPress Security Whitepaper

Best!
Eric Lorence is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
The Following User Says Thank You to Eric Lorence For This Useful Post:
Old 11-13-2008, 07:46 AM   #23
HyperActive Warrior
War Room Member
 
Join Date: Jan 2006
Location: , , USA.
Posts: 442
Thanks: 0
Thanked 8 Times in 6 Posts
Default Re: Wordpress Blog Hacked...

James , Wow - what is going to be in version 2 of your Wordpress Secured Guide? I would love to hear what you have up your sleeves !!!

Thanks,
Jason
jmorris18 is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-14-2008, 08:57 AM   #24
Advanced Warrior
War Room Member
 
Spencer Jones's Avatar
 
Join Date: Feb 2006
Location: Kerala - India
Posts: 848
Thanks: 86
Thanked 19 Times in 16 Posts
Contact Info
Send a message via Skype™ to Spencer Jones
Default Re: Wordpress Blog Hacked...

I am wondering what's going on? It's been a long time since I been here, and now seems like there's no control of promotions of WSO's being done on main discussion board...

Can you guys not comment about the WSO on the WSO thread itself?

Dr.Spencer Jones
Make 10K In A Week Guaranteed | Jesus Christ - The Only Solution To All Your Problems
Want Your Boring Wordpress Blogs To Look Like - Siddha Videos or Divine Verses?
Atahualpa Theme Cuztomization, Anyway You Want For Just $97 - PM To Order...
Spencer Jones is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Old 11-14-2008, 09:50 AM   #25
SmokinMo
War Room Member
 
proapc's Avatar
 
Join Date: Jun 2005
Location: Sun Valley, Idaho, USA.
Posts: 469
Thanks: 22
Thanked 18 Times in 16 Posts
Social Networking View Member's Twitter Profile  View Member's YouTube Profile
Contact Info
Send a message via AIM to proapc Send a message via Skype™ to proapc
Default Re: Wordpress Blog Hacked...

Maybe you should read the post first before making your comment.

FREE MP3 Program To Help You Relax And Sleep

http://www.CDBN.com
proapc is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Reply

  WarriorForum - Internet Marketing Forums > The Warrior Forum > Main Internet Marketing Discussion Forum

Tags
blog, hacked, wordpress

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off



All times are GMT -6. The time now is 01:27 AM.