Hacked! very distraught, please help

  • Hello! I just got hacked by some Turkish people. See here:
    https://little-hypotenuse.com

    This has never happened to me before and I don’t know what to do! I can log-in at https://little-hypotenuse.com/WP-ADMIN, AND all html files work fine. Try https://little-hypotenuse.com/jenn.html. Just any page created via wordpress does not work.

    .htaccess looks fine, index.php looks fine….I don’t know where else to look or what else to do.

    I am using the bad version 2.1.1…is this why it happened to me? I thought I was safe because I downloaded it over a month ago.

    Is there some way I can get my site back up with all the posts without having to resort to using a backup from a week ago?

    I appreciate your help!

Viewing 10 replies - 1 through 10 (of 10 total)

  • Your posts are in the database. If they haven’t accessed the database, your posts are still there. Delete all the wp files except your wp-config.php file, upload the latest version 2.1.2 files. Visit wp-admin/upgrade.php in your browser to make any corrections to the database that might have happened (I don’t know if there were any, I’m not using this version).

    Then CHANGE ALL YOUR PASSWORDS: wp, your site admin access; contact your host provider, tell them what happened, and ask them what else THEY advise you to do.

    Thread Starter jennsoer

    (@jennsoer)

    deleting all the wp files and replacing them…what exactly does that mean? does that include reuploading the admin and includes folder? I didn’t do that.

    I only deleted and replaced the wp files like wp-atom.php and the rest of those. Doing this didn’t change anything.

    What else can I do?

    All of the folders and files EXCEPT your wp-config.php file, and tell you the truth, I’d type the info from it into another file, and recreate that file too if it were me, since I’m paranoid.

    Thread Starter jennsoer

    (@jennsoer)

    but what about the content folder? I don’t want to lose all my stuff there…

    You won’t lose anything. If you upload new files, it’ll just overwrite existing ones. Won’t touch anything else.

    You’d better be sure your permissions are set correctly as well. Most times I’ve seen this happen, it’s because someone has folder permissions set incorrectly.

    Back up your content folder first. Better yet, back up everything first. You will not just be overwriting old files. You will need to reupload your theme and plugin files after replacing the core wordpress files. Best to redownload them from the original source or use a clean copy if you have it and then make any changes that you had made to the new files.

    Thread Starter jennsoer

    (@jennsoer)

    thanks everyone.

    I did all that you said…but it still does not work.

    I’m guessing they hacked into the database? Now what?

    Now, you don’t “guess”. You contact your host, explain the situation and ask them to look at the database.

    Thread Starter jennsoer

    (@jennsoer)

    I sent in a ticket to netrillium. Am awaiting the response (they usually take awhile though).

    If I wanted to get my site back up now, do you think (if it really is the database that was hacked into) it would work if I just used a backup of my database?

    If this were me….

    I’d install wordpress in a new folder, using a new database. And then I’d import the backup of the other database. If I was still seeing the hackcrap, then I’d know the database was screwed too.

    And at that point, you at least would know how bad the damage was.

Viewing 10 replies - 1 through 10 (of 10 total)
  • The topic ‘Hacked! very distraught, please help’ is closed to new replies.

Tags