While our Greenix servers are hardened for website security, we recommend software specific add-ons for extra security. We recommend the Wordfence plug-in for Wordpress. You can find this plug-in here:
http://wordpress.org/extend/plugins/wordfence/
We have also included Wordfence's helpful instructions for cleaning a Wordpress website:
How to Clean a Hacked website with Worfence
If your site has been hacked, Don’t Panic
You can use Wordfence to clean much of the malicious code from your site. Wordfence lets you compare your hacked files against the original WordPress core files, and the original copies of WordPress themes and plugins in the repository. Wordfence lets you see what has changed (do a diff) and gives you the option to repair files with one click and take other actions.Upgrade your site to the newest version of WordPress.
- Upgrade all your themes and plugins to their newest versions.
- Change all passwords on the site.
- Backup all your files and the database.
- Go to the Wordfence options page and make sure the options to scan core, theme and plugin files are selected. Then run a Wordfence scan. This compares your core, theme and plugin files against the original versions in the WordPress repository and lets you know how a hacker has changed them.
- When the results come up you may see a very long list of infected files. Take your time and slowly work through the list.
- Examine any suspicious files and delete them if they are dangerous. Remember that you can’t undo deletions.
- Look at any changed core, theme and plugin files. Use the option Wordfence provides to see what has changed between the original file and your file. If the changes look malicious, use the Wordfence option to repair the file.
- Look at any unknown files that are in core directories and delete them if necessary.
- Slowly work your way through the list until it is empty.
- Run another scan and confirm your site is clean.
If you are still having problems with your Wordpress website, contact Greenix Technical Support
