Can't log in … hacked?

  • Good evening.

    When attempting to log into my WordPress site, on the page in which I ordinarily get prompted to enter my log in credentials, I instead get this message:

    “tamadas elleni vedelem! a lenti felhasznalo nevhez es jelszohoz irja a wp / wp szavakat”

    Google translate indicates that this is Hungarian, and that it is asking for my Username and password. But usual Username and password don’t get me in, and will redirect me to a page that just says “Unauthorized.” I upgraded my version (I believe to 3.9.1) the other day, but it has worked fine for about a week, so I don’t know whether that has anything to do with it.

    Any advice? Anyone else seen something like this?

    thanks

Viewing 3 replies - 1 through 3 (of 3 total)
  • Moderator James Huff

    (@macmanx)

    If you can’t get into your site, and see a language you don’t recognize, it is certainly possible.

    Remain calm and carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures.

    Thread Starter PiersonDC

    (@piersondc)

    OK. Thanks for your help.

    I don’t know whether I have backed-up versions of all my old stuff. I doubt I do, so the thought of starting from scratch is sort of terrifying. The weird thing is, the public/front-page version of my site (the one that any stranger would see) looks just the same. IE, why would someone hack the site just to keep me out, but to not do anything/change anything?

    It’s certainly possible it started locally on my PC, I know little about computers. Is there an AV software/program you’d recommend? Esp. one that can scan and neutralize already-active viruses or worms?

    thanks again, I appreciate it.

    Moderator James Huff

    (@macmanx)

    Yes, do a local scan before proceeding, just in case. If you don’t already have antivirus software, I generally recommend https://www.clamav.net/ and it’s derivatives, so https://www.clamav.net/lang/en/about/win32/ for Windows and https://www.clamxav.com for Mac.

    I do agree that it’s odd the back end is defaced and not the front.

    If the local scan checks out fine, you might want to try manually resetting your plugins. If that resolves the issue, reactivate each one individually until you find the cause.

    If that does not resolve the issue, access your server via FTP or SFTP, navigate to /wp-content/themes/ and rename the directory of your currently active theme. This will force the default theme to activate and hopefully rule-out a theme-specific issue.

    If neither of those make any improvement, try downloading WordPress again and delete then replace your copies of everything except the wp-config.php file and the /wp-content/ directory with fresh copies from the download. This will effectively replace all of your core files without damaging your content and settings. Some uploaders tend to be unreliable when overwriting files, so don’t forget to delete the original files before replacing them.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Can't log in … hacked?’ is closed to new replies.