Someone has infiltrated my website and is adding suspicious images

A new user was created and posts inserted in my website by anonymous user. Need help figuring out how to stop this.

  • David
    • Site Builder, Child of Zeus

    Hi Anders, until heroes respond you should immediately change all passwords (site, MySql, WHM/CPANEL, root if you have your own server) and use password generator with at least 18 characters, delete a new user and all his posts. Create Admin directory pass in Cpanel, install Defender, mask path to admin directory. Then scan for malicious code.

  • Jonjon
    • Code Killa

    Hello Anders.

    After checking your website I can recommend the following:

    1] Check with Hosting Provider and ask them for a full malware scan of the account, especially if it's on shared hosting. Because server might be infected and so other websites as well.

    2] If there's not many updates needed and you have a good backup. Study to 'revert' to an older WP installation all & database as well to be even safer

    3] Double check that all of the plugins/themes are from legitimate Authors and not some 3rd party or cracked/nulled versions that could have backdoors to hackers.

    Feel free to reach out to us if you have any doubts or need any assistance.


Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.