Your posts are in the database. If they haven’t accessed the database, your posts are still there. Delete all the wp files except your wp-config.php file, upload the latest version 2.1.2 files. Visit wp-admin/upgrade.php in your browser to make any corrections to the database that might have happened (I don’t know if there were any, I’m not using this version).
Then CHANGE ALL YOUR PASSWORDS: wp, your site admin access; contact your host provider, tell them what happened, and ask them what else THEY advise you to do.
deleting all the wp files and replacing them…what exactly does that mean? does that include reuploading the admin and includes folder? I didn’t do that.
I only deleted and replaced the wp files like wp-atom.php and the rest of those. Doing this didn’t change anything.
What else can I do?
All of the folders and files EXCEPT your wp-config.php file, and tell you the truth, I’d type the info from it into another file, and recreate that file too if it were me, since I’m paranoid.
but what about the content folder? I don’t want to lose all my stuff there…
You won’t lose anything. If you upload new files, it’ll just overwrite existing ones. Won’t touch anything else.
You’d better be sure your permissions are set correctly as well. Most times I’ve seen this happen, it’s because someone has folder permissions set incorrectly.
Back up your content folder first. Better yet, back up everything first. You will not just be overwriting old files. You will need to reupload your theme and plugin files after replacing the core wordpress files. Best to redownload them from the original source or use a clean copy if you have it and then make any changes that you had made to the new files.
thanks everyone.
I did all that you said…but it still does not work.
I’m guessing they hacked into the database? Now what?
Now, you don’t “guess”. You contact your host, explain the situation and ask them to look at the database.
I sent in a ticket to netrillium. Am awaiting the response (they usually take awhile though).
If I wanted to get my site back up now, do you think (if it really is the database that was hacked into) it would work if I just used a backup of my database?
If this were me….
I’d install wordpress in a new folder, using a new database. And then I’d import the backup of the other database. If I was still seeing the hackcrap, then I’d know the database was screwed too.
And at that point, you at least would know how bad the damage was.
