hacked wp site?
Out of context: Reply #7
- Started
- Last post
- 7 Responses
- mantrakid0
it honestly sounds like it wasnt wordpress but the domain that was hacked... or maybe it had expired at some point and they set it to point to just some spam bullshit so they could make $ on the ads while it sat there... If wordpress itself was hacked, it wouldnt have much to do with the DNS and shit, just the file system within wordpress and 8/10 you can recover from the hack by either installing the latest version overtop the wordpress files or else just re-installing the current files over the wordpress files. Im talking the stuff that shows up in the root, the wp-includes, and wp-admin area. Usually there are no actual wordpress 'core' files running in the wp-content folder, but thats where your theme and shit is, so if the theme was hacked you will have to either restore from a previous unhacked version, or else manually strip out any offending javascripts etc that have been injected into the theme files.
Once you have a fresh re-install of the core wordpress system, IMMEDIATELY get a plugin called "Firewall 2" if you search for it on the Wordpress.org site you'll see it at the top of the list. Install that shit as it blocks a LOT of attempted Database injection & directory traversal attacks that are the main way a wordpress site could get compromised, aside from being on a shitty shared host that doesnt protect their shit.
Once you have that plugin in, clean wordpress install, clean theme files, changed passwords, changed mysql passwords, changed ftp passwords, you are breathing a lot easier...
Let me know if you need a hand, I would be willing to help for a small fee.