Wordpress hack solutions

Hi
Couple of my sites are hacked and got malwares Trojans etc

I know backup restore is one solution but thats not an option in my case

How do I fix the hack? Can somebody guide in detail please ?

I have 600 posts so what do I do? If I export and import post in new Wp, will I get malware/Iframe injection on new site?

Need help badly…

Thanks

Do a mysql dump of your site ASAP. I’m unsure of where any malware is stored, but I do not see it being stored in the tables. Once you have reinstalled a fresh WP app, you should be able to replace the relevant tables with your content.

I also take backup of my data every 7 days.

I hope your posts/database is backed up.

I recently had to deal with a hacked blog myself (WordPress).

The error was something like “Trojan program Trojan.JS.Redirector.cv”.
I checked it with a few sites, including Google’s Webmaster Diagnostics page, and apparently a line of code had been inserted in to every PHP page in the blog.
It re-directed visitors to about five “****.rr.nu” sites.

And whoever did it was able to get into the PHP pages on the main site itself, not just the blog side of the site.

Anyhow, I was concerned that even if I manually deleted the code from every page and re-set the password, the hackers might have inserted a backdoor that would have later allowed them access.
So I contacted my hosting company and had them delete my entire site and re-set my account. Then I started over from nothing, and re-uploaded the site.

So far, so good.

But I only had about ten posts on my blog. Doing 600 is a whole other matter.
All the best to you.

https://codex.wordpress.org/FAQ_My_site_was_hacked

The main causes that help hackers in hacking sites are-

  1. A weak username or password
  2. Plug-ins and themes bugs
  3. Properly not updating themes/plug-ins and WordPress core
  4. jerks
    Check these thing as priority while making sites.