pandoraslunchbox

it was not the pluin. some idiot had hacked into my WP account because I allowed a theme author temporary access with an easy password and then forgot to erase the user account

lesson learned. keep ALL user names & passes complex!!!!

thanks for a super speed answer

to explain the outcome of the hacking – apparently hackers guessed the password and username because I had allowed the theme author temporary admin my site via wordpress login, using an easy to crack name and password, which I then forgot to delete from user list afterwards.

It baffled me why someone would bother to hack a site with virtually no traffic.

The message is, this hacker interfered with a website, and with relationships between myself and a perfectly decent author and it is the hacker who is the culprit.

Protect yourself by only creating complex passwords for all users on your wordpress site and don’t use “admin” as your username

I was implying the hack started from your email address. I now get the concept that you are saying that it is not proven & the hacker “just guessed” the password and name that you were using to access my site.

I thought the hacker had used your name, email address to find that name and passord & get into my admin area in the first place.
@vladff

people install shady or nulled plugins then start complaining that their sites were hacked and blame everybody but themselves.

how many times do I have to say, I followed advice from day one. I NEVER USED ANY PLUGINS FROM ANYWHERE ELSE not only would I not because I saw the advice first, I would not have a clue how to, so please stop saying this. I didn’t use any, OK?

I was hoping someone would explain how, given that I used only pluins directly inside WP, it had been possible for someone to do this. I see now that none of you can do that and that I would need to work it out for myself..

It seemed likeley to me that the hacker might be targetting people Vlad has helped by reading his offers to become admin on their sites and then using similar names/passwords/his email address? I don’t know ..I’m just trying to make guesses and be helpful.

There is no competition about who has been hurt most here. This hacker is the reason for all this and I was just trying sincerely to offer to help you find that person.

I am naive, yes, but at least I’m not the cause of it. don’t shoot the messenger, they may provide you with information you badly need one day

I am asking, I think, for someone to explain to me what you all mean as a “vector for spamming”

Can I just say I realise posting someones email is not always advisable and that I would not have done that under normal circumstances. This was not normal.

I gave permission for vlad to access my site because he was the theme author, and as such had a reputation to uphold so I trusted him. He then very kindly fixed my site for me.

I am not responsible for somone else then using that information and hacking my site. There are no other users of my site. It is a start up project. No-one else but vlad and I ever had access to my site.

I asked the question earlier and no-one answered “is it possible that someone entered my wordpress site other than by using this route?”

I dont see how. No-one has access to my computer.

I have the screenshots of how the hack occured and to me, this is enough proof that it came via vlads email address.. if someone would like to explain to me in plain english exactly how I made the site vulnerable other than by giving vlad access to it, please go ahead I am all ears.

Thank you Vlad, for your sincere apology. I appreciate that. What I am concerned to do now, is to learn from this and move on so I do need a bit of help from you in working out why your email and admin permission has been compromised and if there had been anything I could have done to prevent it. Other than forgetting to erase it off the users menu.

Clearly what you are all saying to Vlad is “don’t offer help to people who you don’t trust” but I have to say woah…how did I be untrustworthy? How did I be vulnerable to this attack? I need your input to explain to me exactly how someone else could have gained access to my “users” list and copied Vlads admin permission and email address?

I also changed the passwords right afterwards too

thank you. I’m not upset.

I appreciate someone listening to me at last and taking my concern seriously.

I hope those screenshots mean that i saved enough useful information before I deleted the moesia theme from my two sites and took the author from the admin list. I am appalled rather than upset

the theme author’s email address shows up as the source of a hack to my wordpress site. I do not recommend using this theme and have complained about it in full, with evidence, here

so, I just discovered another one,
a term [sololiqy] or something like that then followed by a number and this list of links: -I did copy and paste that in a post here but it disappeared!!!!

hublot replica
hublot big bang replica
rolex replica
breitling replica
fake breitling
omega replica
replica watches
swiss replica watches
fake watches
gucci replica
rolex replique
replique breitling
replique omega
replique hublot big bang
montre replique tag heuer
montre replique
what is wrong with wordpress?

and this is what I found on an actual page;

[soliloquy id=”2751″]

hublot replica
hublot big bang replica
rolex replica
breitling replica
fake breitling
omega replica
replica watches
swiss replica watches
fake watches
gucci replica
rolex replique
replique breitling
replique omega
replique hublot big bang
montre replique tag heuer
montre replique

there are words to describe these idiots and they arn’t nice words

is anyone bothered about this weakness in wordpress? like I keep saying, I don’t make scripts, I only use wordpress stuff from the wordprss site and i don’t change anything.

WordPress is not very safe , is it?

I spotted the list of spam links on my “contact” page, where I had used this plugin
and a malware search using a wordpress malware plugin also highlighted Best Web Soft Contact Form plugin as a potential threat.

I had previously removed the plugin

I do not recommend using it

thanks Di I shall follow up on those suggestions.much appreciated

these are the themes that my webhost said were infected and so what i need to know is did I pass the infection on from my own computer or did it get downloaded and uploaded into my theme files, from a plugin via wordpress dashboard?

I used a new anti virus, premium programme and it did find a trojan on my PC (not in wordpress) from a programme called “herd protect” that i had used as a malware finder. could this have been passed to wordpress? via my pc?

Is there a way to check if this is what they were coming from ?