fog99uk

Is it only the config file that should have permissions set to 403?

The rest of the wordpress files are set to 644, except for the folders, which are set to 755.

403. So that’s Read checked for User, plus Write and Execute checked for World?

Done that now. Now when going to /wp-config.php it comes up with a 500 Internal Server Error.

Here’s what I did.

– Logged into my host site.
– Used phpMyAdmin to reset the user details for WordPress (there’s only one user, Admin).
– Changed the keys in the config file using the generator.
– Logged into my WordPress site.
– Changed to a new theme.
– Deleted the old theme.
– Reinstalled the theme I wanted.
– Changed to that theme.
– Changed the user’s password.

This time I’ve also created a new administrator user and deleted the old one.

The site has been kept fully up to date since I created it in March, and I’ve been using the Twenty Eleven theme. The only plugin that I am running is Jetpack.

As someone who does not know code, and I suspect the vast majority of WordPress users are the same, I have no idea what malicious code would look like.

It would seem to be that all I can do is delete the whole thing and start from scratch. I don’t think WordPress is worth the hassle of rebuilding the site from scratch if it gets hacked repeatedly.

Well it’s been hacked again. By a similar hacker, this time named “Mr.Kro0oz.305”.

Ok. Seems they’d messed with the theme I had set. Changing the theme and deleting the altered one appears to have sorted it.

Perfect. Thanks MickeyRoush. I’ve reset the login (and now I have the hacker’s email address). Now to figure out how to fix the home page.

I looked at those. As far as I can make out. All they’ve done is logged in and replaced the home page, rather than adding any malicious code. I’m sure IF I could log in I’d be able to get rid of it, change my passwords, change the security code and change my password again.

But I can’t log in.