Hi good folks,
I really need some help. As a noob to website management, I am struggling to figure out how to address our site possibly being hacked. Yesterday I browsed to the site and received a message from google saying that the site had potentially been hacked, that the site was downloading something to computers without permission. Google's Webmaster tools says that the page that is infected is our http://www.lupenet.org home page.
I have been following the different action steps that I've found through google's webmaster tools and the wordpress support forum FAQ for hacked blogs (located here: http://codex.wordpress.org/FAQ_My_site_was_hacked), but I am not advanced enough to be able to follow all of the steps.
I redirected the site url to a page that says the site is down for maintenance and I've changed the passwords to the accounts that have access to updating the site via wordpress.
The things I need help with are:
*Changing my secret keys - I don't know how to find and then overwrite the values in my wp-config.php file. I don't even know how to find the wp-config.php file.
*Checking my .htaccess file for hacks - HOw do I find the file? Once I find it, how do I check it for malicious code?
*Replacing core files with ones from freshly downloaded zip - how do I replace core files?
I have also been looking at the recommendations for Webmaster tools and they say to look for:
How do I look for those things? The google diagnostic page for our site is located here: http://www.google.com/safebrowsing/diagnostic?site=lupenet.org
I know that this is a lot, so as much help as yall can give me would be very appreciated!! Thanks in advance!