Admin Login using My Username from another country

  • Resolved SteveBimpson

    (@stevebimpson)


    8 years, 9 months ago

    Hi there,

    I’ve had notifications on two of my clients’ websites to advise of an admin login, using my user account but from another country on a date and time that I didn’t login.

    I’ve since checked the sites, carried out a Wordfence scan which identified an altered/unknown file in the theme, deleted it and then re-scanned to make sure that nothing else was found.

    On one of the websites, I decided to add a new admin user account for me to use but when I tried to delete my original user account it led to a 500 error that affected all of the admin pages but not the front end of the site.

    I haven’t tried this with the second site, as yet, but thought I’d ask here, first.

    Any ideas as to what has happened and what I need to do about it?

    Thanks in advance for any help.

    Regards,

    Steve Bimpson

    https://www.ads-software.com/plugins/wordfence/

Viewing 1 replies (of 1 total)
  • Plugin Author WFMattR

    (@wfmattr)

    Hi Steve,

    I haven’t seen a ‘500’ error after removing an admin user — does it still affect all admin pages if you try to log in again?

    If so, see if you can find the “error log” for the site, or ask the host if you cannot find it yourself. (Sometimes it is within the site’s folders, but different hosts have different names and locations, while sometimes it’s located in the hosting company control panel.) The error log should have details about what caused the ‘500’ error.

    We also have a guide here, to help clean hacked sites, which could be helpful to track down any additional issues. Some of the more aggressive scan options may find additional files, and there are recommendations on updates, passwords, etc., which may help prevent reinfection:
    How to clean a hacked website

    -Matt R

Viewing 1 replies (of 1 total)
  • The topic ‘Admin Login using My Username from another country’ is closed to new replies.