LunaticLtd

Esmi,

I’d switched themes with no luck but hadn’t tried your other suggestions. I’ll work on those & see if any help.

Appreciate it.

R

Very cool. Thanks to both idahsto8 and awhiteimage for the ideas. I’ll try those later when I have a chance (at work now). I really appreciate the fast response, too.

I’m about to email the westhost guy to see what he says.

Well, it happened again. I implemented a bunch of security protocols (based on WordPress Defender by John Hoff) but I got hacked again. MP customer support just said there was no way it could be them and it had to be my error because of bad passwords, etc. Looked like a form letter response with minor tweaking for me.

I also tried emailing the guy idahsto8 mentioned but haven’t received a response in 5 days. I’m going to forward him my correspondence with MP and see if something can be done.

Then I’m going to cancel my service with them and go elsewhere. This is ridiculous.

seems that table may have been deleted by the hacker, it may not be an access issue. the MP tech guy I’m chatting with reset my permissions and i still couldn’t do anything. he can’t even find that table in the database.

I asked and he agreed deleting the old database and starting a new one will work, but I’ll loose my posts. I did do a full back up via cpanel like you suggested. will that have my posts in there or will I loose all that?

that’ll be extremely annoying but not critical since i don’t have a LOT of stuff on my blog yet and am revamping it somewhat anyway.

If others are getting the same/similar hacks on their MP hosted sites, my guess would be that it is something at the root or server level account. I’ll see if I can get them to fix my access in phpmyadmin.

Can I just delete the wp database thats there and recreate? Or will that delete all my files/my whole blog?

webjunk,

I checked under wp_usermeta and its shows meta_key for wp_capabilities, the meta_value is exactly what you put. And this is for User ID 1.

I still can’t access the data within the database to change the username/password under wp_users.

Any other thoughts?

MY midphase hosted site has been the subject of attacks, too. It started last week. I got the email saying my password for user name XX had been changed. The site then showed a bunch of stuff on Islam. Contact MP and they told me about changing the settings in phpmyadmin. I did and started cleaning up my site.

Then I got hacked again. I did the same change. A few days later, I’m hacked again. This time, however, I can’t change anything in phpmyadmin. I can get in, but when I click wp-users, I get information on the database and the ability to change the fields but not the data in the fields (ie, usernames, passwords) so I’m effectively locked out of my own site right now.

I talked to MP tech support and all they could say was the hacker had changed other passwords, other than wp-admin, and I’d have to dig through files to find it. I did but have NO idea what I’m looking for.

Any advice, ideas on how to regain control now?

Thanks.

PS – I may have to change hosts, too, but I’d like to regain control first.