This page will contain useful information for sites that suspect or know their DotNetNuke website may have been compromised.
In the case of an known exploited site, the first recommendation is to perform a full site backup (both files and database) and copy that off to a different machine. This will be needed for investigation - if you do not backup the site and instead do a restore from a previous version, valuable information may be lost that will not allow an investigator to say with a degree of confidence where any issue(s) may have been.
- Application integrity checker (commercial versions only)
- TBC...sql script for analysis...