can't access login admin dashboard

tofuchan
(@tofuchan)

11 years, 6 months ago

hi it has been over a month since updating to 4.0 we cannot log in to the admin. it just reloads the login page with no errors or wrong passwords. every use has tried and they get the same refresh on login. i tried renaming the plugins folder and it did nothing. i also renamed the theme “modularity” to something else so that it might go back to the default theme but it only just makes the website load a white page i am very frustrated what can i do? thank you

Viewing 8 replies - 1 through 8 (of 8 total)

abletec
(@abletec)

11 years, 6 months ago

Hi, tofuchan, & welcome.

Could you please give us a link to your site?

Also, if you rename your theme, the admin login page will revert to a default theme, but the blog page won’t. You’ll need to go into the dashboard & change the website theme there, else, as you say, you’ll just get a white page. Were you able to log into your dashboard when you renamed your theme?

Also, using your web host’s control panel file manager, or via secure ftp, there is often a file called error.log in the folder where you installed WordPress. You might wish to check there to see if any errors have been logged.

Thread Starter tofuchan
(@tofuchan)

11 years, 6 months ago

Hi thanks for the reply. The website is
http://Www.vertra.com

I have not been able to log in to the admin dashboard at all. Everything I try it just reloads the same login page which is why I am having issues

I looked for the errr logs and it just has one file from 2013 so I was trying to figure it out what I am doing wrong. It happened after I updated WordPress and the plugins

abletec
(@abletec)

11 years, 6 months ago

Tofuchan, is your site about Viagra, etc.? If not, then unfortunately, given what I’m seeing, it appears your site might be compromised.

There is a login link in your sidebar, which you can use to log into the site.

Thread Starter tofuchan
(@tofuchan)

11 years, 6 months ago

it seems to work in two diff browsers on my computer
no it is not viagra hahahavertra.com

abletec
(@abletec)

11 years, 6 months ago

Yeah, unfortunately, tofuchan, I’m seeing a lot of links i.e., Canadian viagra, nonprescription viagra, etc. So, unfortunately, if that’s not what your site is about, then I have to conclude that your site’s been compromised. So, we’d better address that.
abletec
(@abletec)

11 years, 6 months ago
Tofuchan, here’s what I’m seeing in source. Please note that I have changed http to hxxp & .com to dot com, as well as putting the code in , so the links cannot be inadvertently clicked.
```
168 <div style="position: absolute; top: -4869px">
169 <a href="//radiokrik dot com/canadian-generic-viagra/">canadian generic viagra</a></br>
170 <a href="//twinfishphotography dot com/viagra-no/">viagra no</a></br>
171 <a href="//twinfishphotography dot com/non-prescription-cialis/">non prescription cialis</a></br>
172 <a href="//radiokrik dot com/get-propecia-online/">get propecia online</a></br>
173 <a href="//solarpraxis-mena dot com/real-viagra-pharmacy-prescription/">real viagra pharmacy prescription</a></br>
174 <a href="//solarpraxis-mena dot com/100mg-viagra-too-much/">100mg viagra too much</a></br>
175 <a href="//solarpraxis-mena dot com/viagra-sales-2009/">viagra sales 2009</a></br>
176 <a href="//solarpraxis-mena dot com/how-does-viagra-work-on-men/">how does viagra work on men</a></br>
177 <a href="//radiokrik dot com/viagra-delivered-overnight/">viagra delivered overnight</a></br>
178 <a href="//hellobigdummy dot com/how-much-should-generic-viagra-cost/">how much should generic viagra cost</a></br>
179 </div>
```
The -4869 px line is likely designed to hide these from visitors. However, I happen to be blind & use a screenreader, & it detected these links. As frustrating as blindness is most of the time, maybe in this case it proved an advantage. Since your site’s not about Viagra, then I’m pretty certain your site’s been hacked. I’m really sorry. I’ll continue this topic to help you fix it, if you desire.

If this doesn’t trigger the spam filter…
Thread Starter tofuchan
(@tofuchan)

11 years, 6 months ago

wow youre awesome..i don’t know if that has anything to do with not being able to login to my admin dashboard but i have no idea how to delete that from the source code if i can’t get in to my dashboard….i’ll have to google how to clean out my wordpress without having to start all over or maybe that would not even be a possibility..=(

abletec
(@abletec)

11 years, 6 months ago

Tofuchan, I got a login page when I clicked the login link in the ‘meta’ widget on your sidebar. However, the truth is that you’re going to have to start over.

When dealing w/a hack, there are 2 main objectives. The first is to clean the site. The 2nd, which is actually even more important than the first, is to make sure the bad actors who hacked your site initially can’t get back in.

The steps you’ll need to follow are:
* Secure any devices you log into your site with. This means do at least 1, & preferably 2 malware scans w/different programs. It does no good to clean your site if malware simply calls your credentials home to its command-&-control server.

* Make sure your network is secure. Do not log on using public wifi, such as hotels, airports, cafes, etc. Change the default credentials on your modem/router, making certain your password is a combination of letters, numbers, punctuation signs, doesn’t spell words, & is *long*. Use secure FTP when transferring files to & from your site. Log into your website control panel using a secure connection.

* Notify your hosting provider. They may or may not help, but if this is a server hack as opposed to just a site hack, fixing your site will do no good. They may also be able to assist you in taking the site offline so that your visitors don’t get infected & your site doesn’t send spam emails, though this looks to be more spam than malware. They might even help you fix it.

* Change all credentials–control panel, FTP (if they’re not the same), your database(s), & your dashboard.

* Backup both your database & your site.
To backup your database, refer to:
http://codex.ww.wp.xz.cn/Backing_Up_Your_Database

http://codex.ww.wp.xz.cn/WordPress_Backups should help you in backing up your site. Please label this backup as your site name, the date, & indicate in the name that this is a hack–you don’t want to inadvertently restore these possibly infected files to a good site. This may seem counterintuitive, but it’s a good thing to be able to examine the files afterwords in an attempt to determine what allowed the hack to transpire.

* Open your database in Notepad & search for strings like “eval” “<script>, <?php, base64, as well as the spammy words like viagra, propecia, pharmacy, etc. If they’re present, the probability is you’ll either have to start over or, if you have 1, you can restore the site from a prior backup, though you’ll want to be certain the spammy words aren’t present there as well. If you find things that confuse you, post them here & we can look.

* Delete, then reinstall, all WordPress core files, themes, & plugins.

* If your database is clean, you can reconnect to it via your wp-config.php file & basically restore your site.

* Lastly, please let us have a look at your .htaccess file(s) so we can ascertain that there aren’t any backdoors there which can allow the criminals back in.

This isn’t easy stuff. I’ll hang out here to provide as much help as I possibly can. Please don’t hesitate to ask questions regarding anything you don’t understand. We’ve helped others get through this, & they did fine. So will you, & because you’re now far more security conscious, hopefully this won’t happen to you again.

Viewing 8 replies - 1 through 8 (of 8 total)

The topic ‘can't access login admin dashboard’ is closed to new replies.

can't access login admin dashboard

Tags

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics