| User | Post |
|
9:53 am
October 8, 2011
|
Buck Inspire
| | |
| Member
| posts 1546 | 
|
|
|
Post edited 9:54 am – October 8, 2011 by Buck Inspire
Hi all,
Not a happy camper. To ring in my blog first anniversary, my blog was hacked. The blog looks normal, but my RSS feed has been acting weird for days. Comluv is broken, too. Dug deeper and it looks like all my wordpress files have code embedded on the top which is messing my RSS. I am hobbling along as some of my admin pages don't work properly either. I tried to upload old copies, but it doesn't do the job. The site went down and I had to restore back to the hacked files. I read another user removed every line by hand. That is ridiculous. Does any of you know how to quickly restore these files? I've been doing backups, but never went through a restore. This code is everywhere. wp-admin, wp-include, everything. Back your stuff up.
Any suggestions appreciated. So irritating.
|
|
|
|
|
11:32 am
October 8, 2011
|
Budgeting in the Fun Stuff
| | |
| Member
| posts 3048 |
|
|
|
If you continue needing help, I use Jesse Michelsen from PF Firewall for all of my technical issues…
|
|
|
|
|
12:15 pm
October 8, 2011
|
Buck Inspire
| | |
| Member
| posts 1546 |
|
|
|
Post edited 1:27 pm – October 8, 2011 by Buck Inspire
Thanks for the reference Crystal. Working with my web host right now. We'll see how it goes. Fun weekend, guess I'm going to learn about PHP and restoring WordPress files from backup. 
Update: Files restore and RSS fixed. Thumbs up for iPage tech support!  I apologize to everyone who stopped by to enter for the giveaway, hacker issues.  Please stop by again when you get a chance.
|
|
|
|
|
2:49 pm
October 8, 2011
|
The College Investor
| | San Diego, CA | |
| Admin
| posts 1935 |
|
|
|
Yuck! Did they give any insight into how it could have occurred?
|
|
|
|
|
6:18 pm
October 8, 2011
|
20s Finances
| | |
| Admin
| posts 1147 |
|
|
|
Glad to see it has been fixed.
|
|
|
|
|
6:53 pm
October 8, 2011
|
Buck Inspire
| | |
| Member
| posts 1546 |
|
|
|
Hi TCI,
Not sure yet, will probably write a follow up post. Stay tuned.
|
|
|
|
|
6:54 pm
October 8, 2011
|
Buck Inspire
| | |
| Member
| posts 1546 |
|
|
|
|
7:49 am
October 9, 2011
|
Tony Chou @ Investorz' Blog
| | |
| Member | posts 643 |
|
|
|
That's terrible! Can you tell us how you fixed it?
|
|
|
|
|
9:47 am
October 9, 2011
|
Jackie
| | |
| Member | posts 664 |
|
|
|
Glad you got it fixed. I was going to suggest reinstalling WordPress and then restoring your content from a backup. It seems like a lot of sites have been getting hacked lately.
|
|
|
|
|
10:27 am
October 9, 2011
|
OneCentAtatime
| | Florida, USA | |
| Member
| posts 1778 |
|
|
|
I checked my RSS after more than a month. Good you resolved and great you posted so that others become aware to take steps.
|
|
|
|
|
12:48 pm
October 9, 2011
|
krantcents
| | |
| Member | posts 909 |
|
|
|
Good to see you got it fixed. Any idea how it happened?
|
|
|
|
|
7:02 pm
October 9, 2011
|
Hunter @financiallyc
| | Virginia Beach | |
| Member | posts 707 |
|
|
|
Just had a quick look at BU and it looks to be working ok. That kind of stuff really freaks me out. Glad you resolved things quickly.
|
|
|
|
|
8:19 pm
October 9, 2011
|
Barbara Friedberg
| | |
| Member
| posts 1302 |
|
|
|
Been there-more than once. Glad you are back:)
|
|
|
|
|
10:17 pm
October 9, 2011
|
Buck Inspire
| | |
| Member
| posts 1546 |
|
|
|
Hi all,
Gonna post a follow up real soon. To be honest, iPage tech support brought me back. Thanks for the concern! Take this as a wakeup call to check your backup procedures and web host tech support. 
|
|
|
|
|
5:50 am
October 10, 2011
|
Glen Craig
| | |
| Member
| posts 1087 | |
|
|
Glad to hear you're back up! Please let us know what you find out about the hack and how it happened. I think it can help all of us to hear about your experience.
|
|
|
|
|
9:23 am
October 10, 2011
|
Jeff @ Sustainable Life Blog
| | |
| Member | posts 964 |
|
|
|
Glad that everything worked out – can you post the url to the post you write in this thread? I've often wondered what to do in the event something like this happens to me (I have a feeling I wont be a happy camper either)
|
|
|
|
|
9:44 am
October 10, 2011
|
retireby40
| | USA | |
| Member
| posts 1381 |
|
|
|
Sorry to hear that Buck.
The first thing to do when you notice something screwy is to contact your host.
At least they can restore your good files.
I had to reinstall WP last time, it was a huge pain!…
|
|
|
|
|
10:09 am
October 10, 2011
|
Buck Inspire
| | |
| Member
| posts 1546 |
|
|
|
Hi all,
Will probably post a follow up on the hack this Wednesday. Will put the link here. Thanks all.
|
|
|
|
|
5:29 pm
October 10, 2011
|
Money Reasons
| | |
| Admin
| posts 697 |
|
|
|
Post edited 5:30 pm – October 10, 2011 by Money Reasons
Glad to hear you are back!
Just curious, what did the embedded lines look like? Any hints on who the culprit might have been?
Anyway, good to hear all is well!
Don
|
|
|
|
|
8:00 am
October 11, 2011
|
MissThrifty
| | UK | |
| Member | posts 46 |
|
|
|
Oh, an injection hack! I had one of those a couple of years ago – VERY irritating. Pleased you have sorted it.
First things I would do now, to help prevent it happening again:
1) Check your users in wp-admin. Is anyone showing up who shouldn't be there? Does the number of users listed tally with the number of usernames you can see?
2) Change your username as well as your password. Username: admin = no no.
3) Ensure that you are on the latest version of Wordpress, and that all your plugins are up-to-date.
|
|
|
|
Login
Search 
Home
Print this Topic 
Topic RSS 
