Hello!
Has your WordPress site just been hacked? I intervene within 24 to 48 hours to clean it, restore it, and secure it durably.
Hacking most often comes from a vulnerability in an outdated WordPress plugin or theme, sometimes from a compromised administrator password.
Your site has likely been hacked if:
- you are redirected to advertisements, a pharmacy site, or adult content
- your site is unusually slow or encounters errors
- new pages or files with strange content have appeared
- Google displays a "deceptive site" or "this site may be hacked" warning
- your visitors receive strange emails in your name
- WordPress updates (core, plugins, themes) no longer work
- you can no longer access wp-admin
- your organic search ranking has dropped sharply
Don't panic, there's a solution!
My mission is carried out in 5 steps:
1) I inspect your server via SSH or FTP to identify modified files, injected scripts, fraudulent users, and suspicious database accesses.
2) I back up all files and the database before any intervention.
3) I remove all malicious elements: malware, backdoors, PHP shells, redirects, obfuscated code, SQL injections. I properly reinstall the WordPress core and legitimate plugins.
4) I apply a complete hardening: wp-admin protection, wp-config security, application firewall, XML-RPC and REST API restriction, two-factor authentication.
5) I provide you with a written report and advice to prevent recurrence.
I also offer the implementation of monitoring and alerting tools: real-time file monitoring, weekly security scans by email, availability monitoring with immediate alerts in case of downtime or defacement.
Yann.