another user with my ip adress ?

  • Hi,

    Could you help me ore give advice? I would like to find a plugin ore a way to track malicious code. A couple a weeks ago i noticed many spambots where getting true my security messures. I become suspicous when i noticed spam was created as a new group by the admin (me). I clicked on the icon of group admin that created the new spam group and it came back to my profile. So i started to do some investigation. Looking in the all in one security I noticed under failed login another user with my ip adress. This user had a bizare name (93e60…) During last 2 weeks he/she changed alot his/here username. Im 100 % shure that i’m the only person at home that use the site. It’s remarkable The user with my ip adres has no email adres in the all in one security. Anoter plugin i installed was stop spammers. It confirmed that an author with my ip adress by the name (93e60…) had a good cache in /wp-login.php, again there was no email adres.

    Did someone placed malicious code on my site? How can it be that they use my ip adress? I did a virus scan on my pc. Nothing was found. I contacted my host. They did a malware scan on the site, nothing was found. But the user with my ip is still there. I don’t know what to do, could you give me advise? Is there a plugin that could help, one that can track bad codes?

    Thank you very much

Viewing 5 replies - 1 through 5 (of 5 total)
  • Moderator t-p

    (@t-p)

    I would like to find a plugin ore a way to track malicious code.

    Try Wordfwnce plugin. It comes with a malware scanner, exploit detection, and threat assessment features.

    It’s also possible that someone has hijacked your home PC and is using it to access your site but… that user should be showing your email address from your profile.

    Of course, your profile might not be showing an email address any longer. I’d look and I’d change my admin account name and password just for safety’s sake.

    Another thing is to never use your admin account for posting. That cuts out the username exposure for that admin.

    Thread Starter mrjanvier

    (@mrjanvier)

    Thank you for youre responses.

    I just installed wordfence. I’m doing the scan and hope it will find anything.
    Yes indeed, In the stop spammers plugin i don’t see my email adress in the profile. It was like that from the begin. I onley have it 2 days, so i don’t know yet how it should be. While my security plugin shows my admin name, my ip adress and users id 1. With the user that uses my id it says user id 0.

    How can i find out if someone hijacked my home pc? I have scanned my pc many times, but i didn’t found anything.

    Moderator t-p

    (@t-p)

    Have you tried deleting the user with ID “0”?

    Thread Starter mrjanvier

    (@mrjanvier)

    thank for youre advice. I can’t find user 0, If i go users–>all users, i see all the users. I know them all by person. There is no user 0. I upgraded my antivrus and scanned again on my pc, but nothing was found again. I did find a youtube film where one explain that if they find youre ip adress, they could scan his/here rooter for weakness and make a mysql injection and login in wordpress as admin. I would like to find an expert that knows what happend.
    If anyone know one, you welcome.

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘another user with my ip adress ?’ is closed to new replies.