Hey guys, I was talking last night with a friend of my cousin and she told me she used to have a website that got hacked with spam. She is your usual Wordpress user with no sense of securing a site whatsoever. I asked her for her domain to see what happened. The site is no longer hosted, she cancelled her Godaddy hosting and moved on. The site is still indexed by Google though, and shows many indexed pages with the snippet of "Find Cash Advanced" bla bla bla spam. She told me she didn't notice the hack until someone told her how the site was appearing in Google, she freaked out and left the site and removed the hosting. She didn't track traffic nor did she have WMT to see if she got a penalty of some sorts. This happened about 4 months ago. I had a look at the backlink profile and voila, there's some 10,000 links pointed at her domain (in 1 year). What was very interesting is that the sites pointing at her are "pop and mom" sites that were also hacked, which leads me to think her site was part of a spamming network used in the payday loan industry. Some of the sites pointing to her domain have been fixed whereas other sites still have the spam but remain active sites (owners don't know their sites are hacked). In fact, at a first glance, her profile backlink looks pristine, but then when I search for the linking sites the cash advance spam appears in their Google snippets too. My question is, could a domain like hers be saved? As said, she doesn't host the domain no longer so perhaps it would be a matter of grabbing some new webhost and hosting the site there? Do you think by re-activating the domain under a new host this would lead to the spamming bot returning to the site and trying to hack it again? My idea is to find her a secure hosting, secure the WP site and give her a few security pointers. Thanks for any answers.