Like I said, it doesnt matter. What you need to be doing is deciding what to do with your current situation.
Your options are limited..
There are a good # of posts already here that address recently exploited installs. Depending on what you upgraded from, you may or may not have been a victim of the same exploit as someone else. Consequently, you pretty much have to do everything mentioned.
Everything means going through and auditing, specifically, files that cannot just be replaced…that would be any theme files that contain custom code, and more importantly, your wp-config.php
Depending on how attached you are to your plugins, that might also include your plugins.
By auditing, I dont mean random, I mean all, and I mean looking for anything that looks suspicious.. long strings of javascript that contain whats best described as just lots of letters, for instance.
Files that can be easily be replaced need to be completely deleted off your web space, and fresh ones uploaded in their place.
Additionally, you need to follow the instructions here:
http://wordpressphilippines.org/blog/has-your-wordpress-been-hacked-recently/
Again, you’re covering all of your bases since there is no telling when your site was exploited or how many different exploits you’ve been a victim of.
If you cant do that, or dont want to do that, then you can shitcan the database, shitcan the files, and start fresh. Or you can pay someone with a lot of patience to do the work for you.
Your call..
,
