There isn't really a set process that you can follow to clean up a hacked Wordpress website as not all hacks are the same. The good news is that almost all hacks can be recovered from if you are willing to invest a bit of time, effort, or money to get your Wordpress site back online.

If you're an experienced Webmaster then you may be able to clean a hacked Wordpress website yourself, or if you're a novice you may find it much quicker and easier to pay someone to do the job for you.

If you've been sent an email from your web host with a list of hacked/malicious files that have been detected on your webspace, please read and understand the following:

With that out of the way, here's how to clean a hacked Wordpress website.

Option 1: The DIY Method

This method is recommended only for those of you that are experienced Webmasters. If you are not an experienced Webmaster you may end up doing more damage to your website whilst you attempt to clean up the hack.

If you're confident enough to fix the hacked website yourself, then please proceed to the following guide and follow all of the steps IN FULL to clean your Wordpress site:


-- How To Clean a Hacked Wordpress Site --

Option 2: Have Somebody Do It For You

If you don't have the skills, or the time, to clean up a hacked website yourself then you do have the option of paying a company to clean everything up for you.

If you'd like to pay the professionals to clean up your Website for you then we have partnered with Sucuri to provide you with a one time website clean up service which you can order here:

-- Click Here To Have Sucuri Clean Your Wordpress Site --

When The Hacked Site Has Been Cleaned

Once you have followed one of the options above to clean your site, you need to make sure that the hackers aren't able to get back in. To minimize the risk of being reinfected, we recommend that you go through our Wordpress Security/Hardening steps that are outlined in the following guide:

-- Wordpress Security Steps --