WordPress Website got Hacked

• 

  nick586e6a6d0f7 · Member · Sep 24, 2025 at 5:08 pm

  • Copy link
  • Add topic to favorites

  Hi,

  We are reaching out for urgent help with one of our client’s websites (doradodesigns.com). The site has been compromised and is currently non-functional:

  • The hack has overwritten our web pages with malicious content.
  • Numerous unauthorized plugins and files were installed.
  • We attempted to remove these malicious plugins and files, but during the process the WordPress backend editor became inaccessible, and we are now completely locked out of the admin dashboard.
  • Suspicious directories and fake plugins appear to have been added to the filesystem as well.

  At this point, the website is not recoverable through the dashboard, and we are concerned that the infection may extend into the database, core WordPress files, or .htaccess.

  We need guidance on:

  1. Safely removing the malicious code and files.
  2. Restoring clean WordPress core files, themes, and plugins.
  3. Regaining access to the WordPress admin panel.
  4. Best practices to harden the site to prevent another breach once it’s restored.

  This is an urgent situation for our client, and we would greatly appreciate your assistance in helping us secure and restore the site as quickly as possible. Please let us know the best next steps.

  Thank you for your support,

  The blog I need help with is: (visible only to logged in users)

• 

  staff-robz · Staff · Sep 25, 2025 at 2:04 pm

  • Copy link

  Hi Nick,

  Thank you for reaching out through here and the official WordPress.com support email.

  I followed up with you through there with the next steps for your client’s site hosted outside WordPress.com.

  If you have further questions, let’s keep the conversation going via email.