Know that their are techniques available to you to recover hacked Joomla accounts that you have rightful ownership to.
Add a New Super Administrator User
If changing the password won’t work, or you aren’t sure which user is a member of the Super Administrator group, you can use this method to create a new user.
- Navigate to phpMyAdmin and select the database for the Joomla! site in the left-hand drop-down list box. This will show the database tables on the left side of the screen.
- Press the “SQL” button in the toolbar to run an SQL query on the selected database. This will display a field called “Run SQL query/queries on database <your database>”.
- Delete any text in this field and copy and paste one of the following queries and press the Go button to execute the query and add the new Administrator user to the table.
- The following worked today for Joomla 3.2.x, I have also been able to use it on J2.5.x in the past.
INSERT INTO `jos_users` (`name`, `username`, `password`, `params`) VALUES ('Administrator2', 'admin2', 'd2064d358136996bd22421584a7cb33e:trd7TvKHx6dMeoMmBVxYmg0vuXEA4199', ''); INSERT INTO `jos_user_usergroup_map` (`user_id`,`group_id`) VALUES (LAST_INSERT_ID(),'8');
This is public knowledge, please delete this user after you have recreated/recovered your own Super User.
- password = “this is the MD5 and salted hashed password”
- admin = 433903e0a9d6a712e00251e44d29bf87:UJ0b9J5fufL3FKfCc0TLsYJBh2PFULvT
- secret = d2064d358136996bd22421584a7cb33e:trd7TvKHx6dMeoMmBVxYmg0vuXEA4199
- OU812 = 5e3128b27a2c1f8eb53689f511c4ca9e:J584KAEv9d8VKwRGhb8ve7GdKoG7isMm
Disclaimer: Actions described here are not recommended if you are not technically clear on what you are doing, Noxidsoft and it’s employees take no responsibility for your actions on any website. The purpose is to allow you to recover a website where you have written/verbal permission to do so or you are the clear owner of such a website; and is for information purposes only.