dsparking – Hack Only Part Resolved
-
Need guidance! Recently my website was hacked by the “dsparking” lot (sorry, no pun intended!) I couldn’t access either my site or the Admin. It was redirecting to a sleazy advertising page. I did all the usual stuff: uploaded new WP files, checked htaccess, carefully checked all my theme files and folders, uploaded a previous version of the database, but all I could find wrong was my “Uploads” folder for January 2013 had been emptied of all files (images). Eventually, I obtained access to Admin (not sure how, must have been something I did as listed above) and my home page, but every post or page link was redirecting to dsparking. I changed the permalink structure from the default to
.../archives/%post_id%and that seemed to cure the problem. Since then I’ve installed the Sucuri and WP Clean Up plugins.
My concern is that there is still a ‘back-door’ open. My admin htaccess file denies access to all but my IP address, and when I try to log-in using a VPN IP I still get redirected to the dsparking page. Somewhere on my site the malicious code is still lurking. I want rid of it.
I’m guessing it could be in my database, but my MySql knowledge is non-existent, so I’m not sure how to check it out. I host with IX Web Hosting and they don’t have CPanel, only phpMyAdmin.
Anyone else had this problem, or can point me in the right direction? It’s a real head-scratcher.
- The topic ‘dsparking – Hack Only Part Resolved’ is closed to new replies.