Hacked!!

[popeye]

Ok I just tried to login to a blog I have and POW!! Instead of my wordpress blog, all I have is a fuckin video capture of "two girls one cup". I am not up on all the haxor methods and whatnot. How the hell do they hack me? I use ran various virus/spyware scans, use roboform (so no keylog), use very strong password... etc.

Any Ideas of how someone would hack me?

EDIT: this is a blog pushing children book clubs..so I am sure some mother's got a real surprise looking for disney books and getting "two girls one cup"

 

[smoosh]

That really sucks - sorry to hear that... but i must admit one thing

This...

this is a blog pushing children book clubs..so I am sure some mother's got a real surprise looking for disney books and getting "two girls one cup"

...is fucking hilarious!!!

 

[WildPointer]

Is your software (WP) old? Make sure everything you're using is up to date.

If somebody really wants to get into your PC, they could, and no AV scanner will help. I used to write malware (malicious-software). It's huge underground. People buy this software for big bucks and we were only supposed to sell one version to one person, so that it never becomes detectable. The AV scanners only detect software that they know about. Which is only the kiddy stuff like sub7 and Optix. Those heuristic engines that are meant to find patterns in code and detect new malware are easy to fool.
I won't even talk about rootkits.

Anyway - point being: Unless you have enemies, it's unlikely your box itself was hacked. Check website logs (ALL of them are important). Contact your webhost and inform them. Also discontinue using any small-time or custom scripts until you find the problem. Make sure ALL WP plugins/scripts are up to date. Change ALL passwords from a secure computer.

If site was hosted on your PC or you have reason to suspect your box itself was hacked, then backup and format. DO NOT backup executable files! No EXEs, no BINs, etc. Just backup stuff that are unlikely to be compromised.