Wordpress Blog Hacked...

Spencer Jones · 11-10-2008, 10:49 AM

Yesterday I had someone new register to my wordpress blog with the username "admin" and then reset the password and changed it. I am not able to access the blog with my username and password now.

And today the same thing happened to another one of my blogs, and the hacker was trying the same technique, but this time, my admin username wasn't admin and so the hacker failed.

Then as a precaution I went on and unchecked the setting that allow anyone to register inside my blogs. So all the rest of my blogs must be secure now.

Anyway I would like to know how to get that hacked blog back to my hands?

Thanks
Spencer Jones

BlueSquares · 11-10-2008, 10:51 AM

Sorry! In order to help, what version of Wordpress are you running?

Spencer Jones · 11-10-2008, 10:57 AM

It's wordpress Version 2.6.1. Yes I do have access to the server...

TheRichJerksNet · 11-10-2008, 10:58 AM

Spencer,
Grab my WSO before I remove it ... Was fixing to do just that ..

James

BlueSquares · 11-10-2008, 10:59 AM

Open up PHPMyAdmin via your control panel. Navigate to the users database, change the admin name and password. When saving the password, select MD5. You will have access to your WP folder again.

More detail...How to Reset Wordpress Admin Password

Bishop81 · 11-10-2008, 11:01 AM

You don't have to go through the hassle of reinstalling anything.

Go into your PHPMyAdmin and navigate to the wp_users table for the blog in question. Find the admin user and click on Edit to edit that row. In the functions dropdown, select "MD5" then for the value enter in the password that you want to change it to. Click Save and you should now be able to enter your blog with that password.

As long as user registration is disabled, you shouldn't have that problem any more. That doesn't mean your blog is completely secured, but you won't have that specific problem again.

Spencer Jones · 11-10-2008, 11:02 AM

Anyway to edit the users and admin via FTP ?

mookinman · 11-10-2008, 11:04 AM

Somebody has hacked one of my wordpress blogs as well - I keep getting this "Casino En Ligne" link appearing in my blogroll- every time I delete it, it just comes back!

Spencer Jones · 11-10-2008, 11:10 AM

Any other ways?

I don't have access to the phpmyadmin of this particular blog, only have access to ftp area. Since I got this domain as part of a competition I was participating and is actually a domain under a main account which is owned by someone else...

Jassa · 11-10-2008, 11:48 AM

Surely, that will be the reason then. If you won it in a competition, the competition was probably conceived to implement some 'tricky business' - or am I just being paranoid?

2. re: security of blogs, I'd always understood that we should delete the install.php file as soon as we have finished installing.

zeurois · 11-10-2008, 12:48 PM

Problem solved?

If not, PM me. I'll help you reset your password.

BlueSquares · 11-10-2008, 01:11 PM

Quote:

Originally Posted by mookinman

Somebody has hacked one of my wordpress blogs as well - I keep getting this "Casino En Ligne" link appearing in my blogroll- every time I delete it, it just comes back!

WordPress › Support "Casino en Ligne" adding itself to my blogroll

Greg Cooksley · 11-10-2008, 01:56 PM

Quote:

Originally Posted by TheRichJerksNet

Spencer,
Grab my WSO before I remove it ... Was fixing to do just that
..

James

Hey Spencer,

If you really want to protect your WP blog in future you have
to get the product that James is offering on his WSO above....

He really knows what he's talking about....

Regards

Greg

Bishop81 · 11-10-2008, 02:21 PM

Since you have ftp access, the only thing you can do is to delete the user and and re-register. You can do this with PHP. You will have to get your db connection details from the wp-config.php file, and then use them to make your calls to the database.

Or, you can update that row in the database in the same fashion. Just write a php page that calls the db and updates the record to whatever you want the password to be.

TheRichJerksNet · 11-10-2008, 03:18 PM

Quote:

Originally Posted by Greg Cooksley

Hey Spencer,

If you really want to protect your WP blog in future you have
to get the product that James is offering on his WSO above....

He really knows what he's talking about....

Regards

Greg

Hey Greg,
Apprciate you mentioning me there...

Thanks,
James

riff · 11-10-2008, 03:43 PM

I want to piggyback on Greg's comment. I use wordpress as the platform for all of my sites. The recent increase in wordpress hacks has had me nervous.

I picked up James' WSO and, while I'm no techno geek, I'm pretty confident my sites won't be getting hacked...once I get around to updating them all with the procedures in the WSO. [Where was the back end offer for paid upgrade services, James?

]

I'm not trying to be a shill here. I don't know James from Adam, but his product is top notch and should solve your wordpress issues going forward.

TheRichJerksNet · 11-10-2008, 05:03 PM

Hi riff,
Thanks .. appreciate it

Actually did not add any backend offer on WPS .. Thought about it but figure I would wait for v2 which will come out soon and v1 owners will get a huge discount..

So before I pull WPS for good, grab it now as I do plan on pulling v1 real soon..

James

proapc · 11-10-2008, 05:32 PM

I searched the WSO and could not locate James' WSO. Does anyone have a link to it?

TheRichJerksNet · 11-10-2008, 05:42 PM

Its the link in my sig ...

2nd link

James

Spencer Jones · 11-10-2008, 05:49 PM

Hello Peter, I just sent you a PM.

Hello Bishop81, I have access to the wp-config file. Also I can see the database name, user and password. But since I don't know PHP, don't know how to go on from there... Any more help, the ftp way?

Thanks & Regards
Spencer Jones

Spencer Jones · 11-11-2008, 04:46 PM

isn't there any way?

Eric Lorence · 11-11-2008, 06:04 PM

Use this code, just enter it into your admin password table in PHPmyadmin:

Quote:

21232f297a57a5a743894a0e4a801fc3

It will reset your password to "admin"- (MD5 hash)

There are also some free Wordpress security resources here:

BlogSecurity Blog Archive WordPress Security Whitepaper

Best!

jmorris18 · 11-13-2008, 06:46 AM

James , Wow - what is going to be in version 2 of your Wordpress Secured Guide? I would love to hear what you have up your sleeves !!!

Thanks,
Jason

Spencer Jones · 11-14-2008, 07:57 AM

I am wondering what's going on? It's been a long time since I been here, and now seems like there's no control of promotions of WSO's being done on main discussion board...

Can you guys not comment about the WSO on the WSO thread itself?

proapc · 11-14-2008, 08:50 AM

Maybe you should read the post first before making your comment.

11-10-2008, 10:49 AM	#1
Spencer Jones Advanced Warrior Join Date: Feb 2006 Location: Kerala - India Posts: 698 Thanks: 15 Thanked 0 Times in 0 Posts Contact Info	Wordpress Blog Hacked... Yesterday I had someone new register to my wordpress blog with the username "admin" and then reset the password and changed it. I am not able to access the blog with my username and password now. And today the same thing happened to another one of my blogs, and the hacker was trying the same technique, but this time, my admin username wasn't admin and so the hacker failed. Then as a precaution I went on and unchecked the setting that allow anyone to register inside my blogs. So all the rest of my blogs must be secure now. Anyway I would like to know how to get that hacked blog back to my hands? Thanks Spencer Jones
	Spencer Jones Divine Verses The Complete Content Solution System - Build Your Own Writing Team Free Of Cost - In Less Than 7 Days Guaranteed!

11-10-2008, 10:51 AM	#2
BlueSquares Senior Warrior Member Join Date: May 2008 Location: South Florida Posts: 1,555 Blog Entries: 1 Thanks: 67 Thanked 247 Times in 102 Posts	Re: Wordpress Blog Hacked... Sorry! In order to help, what version of Wordpress are you running?
	Wordpress Salesletter Theme Create Salespages, Presells & PPC/CPA Landing Pages in Wordpress FREE WSO Bump Notifications: Get the Step-by-Step Video PHP Link Cloaker: Hide Affiliate Links & Track Clicks. Secure, Web-Based, Admin Area. Unlimited Site License. Buy Me a Beer

11-10-2008, 10:57 AM	#3
Spencer Jones Advanced Warrior Join Date: Feb 2006 Location: Kerala - India Posts: 698 Thanks: 15 Thanked 0 Times in 0 Posts Contact Info	Re: Wordpress Blog Hacked... It's wordpress Version 2.6.1. Yes I do have access to the server...
	Spencer Jones Divine Verses The Complete Content Solution System - Build Your Own Writing Team Free Of Cost - In Less Than 7 Days Guaranteed!

11-10-2008, 10:58 AM	#4
TheRichJerksNet PhpMembersScript.com Join Date: Aug 2008 Location: South Carolina, USA Posts: 3,101 Blog Entries: 2 Thanks: 142 Thanked 270 Times in 203 Posts Social Networking Contact Info	Re: Wordpress Blog Hacked... Spencer, Grab my WSO before I remove it ... Was fixing to do just that .. James
	ArticleProductions.com - Only Article Directory That Has CreationMode Technology For The Article Marketer *7 Day Trial* Less $10/month \|400+ Authority Bookmarks and Backlinks - Starts @ $8.77 Amazing WSO\| The Most Advanced Membership Script There Is No Equal \| WordPressSecured Special

11-10-2008, 10:59 AM	#5
BlueSquares Senior Warrior Member Join Date: May 2008 Location: South Florida Posts: 1,555 Blog Entries: 1 Thanks: 67 Thanked 247 Times in 102 Posts	Re: Wordpress Blog Hacked... Open up PHPMyAdmin via your control panel. Navigate to the users database, change the admin name and password. When saving the password, select MD5. You will have access to your WP folder again. More detail...How to Reset Wordpress Admin Password
	Wordpress Salesletter Theme Create Salespages, Presells & PPC/CPA Landing Pages in Wordpress FREE WSO Bump Notifications: Get the Step-by-Step Video PHP Link Cloaker: Hide Affiliate Links & Track Clicks. Secure, Web-Based, Admin Area. Unlimited Site License. Buy Me a Beer

11-10-2008, 11:01 AM	#6
Bishop81 Programmer Extraordinaire Join Date: Jun 2007 Location: Olathe, KS USA. Posts: 656 Thanks: 35 Thanked 28 Times in 24 Posts Social Networking	Re: Wordpress Blog Hacked... You don't have to go through the hassle of reinstalling anything. Go into your PHPMyAdmin and navigate to the wp_users table for the blog in question. Find the admin user and click on Edit to edit that row. In the functions dropdown, select "MD5" then for the value enter in the password that you want to change it to. Click Save and you should now be able to enter your blog with that password. As long as user registration is disabled, you shouldn't have that problem any more. That doesn't mean your blog is completely secured, but you won't have that specific problem again.
	Can you really build a business with no money and just An Hour Each Day? Loads of Public Domain Books in one place! http://www.publicdomain-books.com Learn About Credit Repair For Free - http://www.mycreditrepairthoughts.com

11-10-2008, 11:02 AM	#7
Spencer Jones Advanced Warrior Join Date: Feb 2006 Location: Kerala - India Posts: 698 Thanks: 15 Thanked 0 Times in 0 Posts Contact Info	Re: Wordpress Blog Hacked... Anyway to edit the users and admin via FTP ?
	Spencer Jones Divine Verses The Complete Content Solution System - Build Your Own Writing Team Free Of Cost - In Less Than 7 Days Guaranteed!

11-10-2008, 11:04 AM	#8
mookinman David Black Join Date: Jan 2008 Location: Birmingham, United Kingdom. Posts: 312 Thanks: 36 Thanked 39 Times in 11 Posts	Re: Wordpress Blog Hacked... Somebody has hacked one of my wordpress blogs as well - I keep getting this "Casino En Ligne" link appearing in my blogroll- every time I delete it, it just comes back!
	Check it out --->>> My OFFLINE sales letter that works!

11-10-2008, 11:10 AM	#9
Spencer Jones Advanced Warrior Join Date: Feb 2006 Location: Kerala - India Posts: 698 Thanks: 15 Thanked 0 Times in 0 Posts Contact Info	Re: Wordpress Blog Hacked... Any other ways? I don't have access to the phpmyadmin of this particular blog, only have access to ftp area. Since I got this domain as part of a competition I was participating and is actually a domain under a main account which is owned by someone else...
	Spencer Jones Divine Verses The Complete Content Solution System - Build Your Own Writing Team Free Of Cost - In Less Than 7 Days Guaranteed!

11-10-2008, 11:48 AM	#10
Jassa Active Warrior Join Date: Feb 2007 Location: United Kingdom. Posts: 87 Thanks: 6 Thanked 4 Times in 4 Posts Social Networking Contact Info	Re: Wordpress Blog Hacked... Surely, that will be the reason then. If you won it in a competition, the competition was probably conceived to implement some 'tricky business' - or am I just being paranoid? 2. re: security of blogs, I'd always understood that we should delete the install.php file as soon as we have finished installing.
	Best Google Slapper Bonus Google Slapper Reviews "Life is a lot like jazz... it's best when you improvise" - George Gershwin

11-10-2008, 12:48 PM	#11
zeurois Advanced Warrior Join Date: Feb 2007 Posts: 523 Thanks: 22 Thanked 22 Times in 8 Posts	Re: Wordpress Blog Hacked... Problem solved? If not, PM me. I'll help you reset your password.
	10 Easy Ways to Monetize Blogs Would you like to try out my multivariate testing software for free?

11-10-2008, 02:21 PM	#14
Bishop81 Programmer Extraordinaire Join Date: Jun 2007 Location: Olathe, KS USA. Posts: 656 Thanks: 35 Thanked 28 Times in 24 Posts Social Networking	Re: Wordpress Blog Hacked... Since you have ftp access, the only thing you can do is to delete the user and and re-register. You can do this with PHP. You will have to get your db connection details from the wp-config.php file, and then use them to make your calls to the database. Or, you can update that row in the database in the same fashion. Just write a php page that calls the db and updates the record to whatever you want the password to be.
	Can you really build a business with no money and just An Hour Each Day? Loads of Public Domain Books in one place! http://www.publicdomain-books.com Learn About Credit Repair For Free - http://www.mycreditrepairthoughts.com

11-10-2008, 03:43 PM	#16
riff HyperActive Warrior Join Date: Apr 2007 Location: Ohio, USA. Posts: 144 Thanks: 9 Thanked 6 Times in 6 Posts	Re: Wordpress Blog Hacked... I want to piggyback on Greg's comment. I use wordpress as the platform for all of my sites. The recent increase in wordpress hacks has had me nervous. I picked up James' WSO and, while I'm no techno geek, I'm pretty confident my sites won't be getting hacked...once I get around to updating them all with the procedures in the WSO. [Where was the back end offer for paid upgrade services, James? ] I'm not trying to be a shill here. I don't know James from Adam, but his product is top notch and should solve your wordpress issues going forward.

11-10-2008, 05:03 PM	#17
TheRichJerksNet PhpMembersScript.com Join Date: Aug 2008 Location: South Carolina, USA Posts: 3,101 Blog Entries: 2 Thanks: 142 Thanked 270 Times in 203 Posts Social Networking Contact Info	Re: Wordpress Blog Hacked... Hi riff, Thanks .. appreciate it Actually did not add any backend offer on WPS .. Thought about it but figure I would wait for v2 which will come out soon and v1 owners will get a huge discount.. So before I pull WPS for good, grab it now as I do plan on pulling v1 real soon.. James
	ArticleProductions.com - Only Article Directory That Has CreationMode Technology For The Article Marketer *7 Day Trial* Less $10/month \|400+ Authority Bookmarks and Backlinks - Starts @ $8.77 Amazing WSO\| The Most Advanced Membership Script There Is No Equal \| WordPressSecured Special

11-10-2008, 05:32 PM	#18
proapc Mo Join Date: Jun 2005 Location: Sun Valley, Idaho, USA. Posts: 436 Thanks: 22 Thanked 15 Times in 13 Posts Social Networking Contact Info	Re: Wordpress Blog Hacked... I searched the WSO and could not locate James' WSO. Does anyone have a link to it?
	Do you need something to help you when you can't smoke? http://www.SmokeScents.com Get Your Piece Of The Adult Industry Without Being In The Business.. http://www.CDBN.com

11-10-2008, 05:42 PM	#19
TheRichJerksNet PhpMembersScript.com Join Date: Aug 2008 Location: South Carolina, USA Posts: 3,101 Blog Entries: 2 Thanks: 142 Thanked 270 Times in 203 Posts Social Networking Contact Info	Re: Wordpress Blog Hacked... Its the link in my sig ... 2nd link James
	ArticleProductions.com - Only Article Directory That Has CreationMode Technology For The Article Marketer *7 Day Trial* Less $10/month \|400+ Authority Bookmarks and Backlinks - Starts @ $8.77 Amazing WSO\| The Most Advanced Membership Script There Is No Equal \| WordPressSecured Special

11-10-2008, 05:49 PM	#20
Spencer Jones Advanced Warrior Join Date: Feb 2006 Location: Kerala - India Posts: 698 Thanks: 15 Thanked 0 Times in 0 Posts Contact Info	Re: Wordpress Blog Hacked... Hello Peter, I just sent you a PM. Hello Bishop81, I have access to the wp-config file. Also I can see the database name, user and password. But since I don't know PHP, don't know how to go on from there... Any more help, the ftp way? Thanks & Regards Spencer Jones
	Spencer Jones Divine Verses The Complete Content Solution System - Build Your Own Writing Team Free Of Cost - In Less Than 7 Days Guaranteed!

11-11-2008, 04:46 PM	#21
Spencer Jones Advanced Warrior Join Date: Feb 2006 Location: Kerala - India Posts: 698 Thanks: 15 Thanked 0 Times in 0 Posts Contact Info	Re: Wordpress Blog Hacked... isn't there any way?
	Spencer Jones Divine Verses The Complete Content Solution System - Build Your Own Writing Team Free Of Cost - In Less Than 7 Days Guaranteed!

11-13-2008, 06:46 AM	#23
jmorris18 HyperActive Warrior Join Date: Jan 2006 Location: , , USA. Posts: 436 Thanks: 0 Thanked 8 Times in 6 Posts	Re: Wordpress Blog Hacked... James , Wow - what is going to be in version 2 of your Wordpress Secured Guide? I would love to hear what you have up your sleeves !!! Thanks, Jason

11-14-2008, 07:57 AM	#24
Spencer Jones Advanced Warrior Join Date: Feb 2006 Location: Kerala - India Posts: 698 Thanks: 15 Thanked 0 Times in 0 Posts Contact Info	Re: Wordpress Blog Hacked... I am wondering what's going on? It's been a long time since I been here, and now seems like there's no control of promotions of WSO's being done on main discussion board... Can you guys not comment about the WSO on the WSO thread itself?
	Spencer Jones Divine Verses The Complete Content Solution System - Build Your Own Writing Team Free Of Cost - In Less Than 7 Days Guaranteed!

11-14-2008, 08:50 AM	#25
proapc Mo Join Date: Jun 2005 Location: Sun Valley, Idaho, USA. Posts: 436 Thanks: 22 Thanked 15 Times in 13 Posts Social Networking Contact Info	Re: Wordpress Blog Hacked... Maybe you should read the post first before making your comment.
	Do you need something to help you when you can't smoke? http://www.SmokeScents.com Get Your Piece Of The Adult Industry Without Being In The Business.. http://www.CDBN.com