I read a guide on how to recover user name and password and I did recover my blog however it does not load. I don't know what the hijacker did. Luckily he has not deleted the posts. But why are some guys evil? I never thought anything this evil. Can anyone help me to recover my wp pages? (the pages do not load. Only white page)
I couldn't fix it by myself and this is what I did. I went over to fiverr.com and when searching found one gig about fixing hacked wordpress. I contacted him first to tell him that I want every post and plugins intact. He approved me. I made an order and within an hour he fixed it. Big relief! I would like to mention my gratitude for that guy I found in Fiverr.com. Here is his gig http://fiverr.com/wordpress_seo/fix-your-hacked-wordpress-site
I got hijacked again. Now by a terrorist .. maybe. This is bu...hit. How are they hacking into my account???
check your server also. Server might be vulnerable. Generally wordpress is highly secure. Use few plugins, some plugins are vulnerable.
Well, as precautionary measures you can install few plug-ins that might help to stop the attacks like: Wordpress Firewall 2 : stops most common and injection attacks Captach : can slow down the brute force attack on your admin account. Also, you can revoke the write permissions on your wordpress file , so that they cannot be modified. about the white pages, check your php mappings on the domain and replace the default index.php file from a wordpress installation... that should work. you can ask your webhost support to look into this, as they might have better idea about their servers.
Some webhosts provide automatic backups of your data. Ask your webhost to enable it. Also, backup your stuff manually and do it once every week.
I did change the password to something stronger after the fiverr guy helped me, The second hijack was maybe by some islamist fanatics because my page displays insult on Israel and promotes Islam. The amazing thing is every URL even the redirect from that domain shows their message. The saddest thing is I lost all the traffic to my site and redirect links maybe for 3 days. This is what I did to recover it. I just went to fiverr.com and asked the guy that fixed the first hijack about how I may recover the second hijack. He replied "try upgrading to the latest WP software". I did it and it was back to normal. I tried contacting the host and their reply was that they are afraid the backup can be corrupted and hence they will give me a fresh installation of my website which means everything will be deleted. I disagreed and the upgrading to the latest WP software worked for me. But I first recovered the password in my cpanel so I can login in my WP dashboard. I also read about this issue and installed some plugins that encript passwords and lock repetitive login attempts. Hope my sites never get hijacked again. Thanks for the care guys.
Since I started using login lock plugin, no problem. I advice people to use this or similar plugin before it is too late. Imagine how you feel if you loose all your posts or pages. It can be disaster and you will never know what it feels until it happens to you.