• Updating your core WordPress software to the most recent secure version
• Updating your WordPress plugins to the most recent secure version (these need to be part of the standard WordPress plugin directory and does not cover 3rd party or custom created plugins. Premium 3rd party plugins can be updated so long as we have the ability to work seamlessly with the plugin creator to obtain a recent fresh and up to date copy of the plugin).
• Update your theme (this does not cover custom created themes. If you’re using a custom theme, we’ll help you work with the theme developer to make sure there are no vulnerabilities, however, we cannot patch holes in someone’s custom created theme).

• Update your database password and username
• Update your FTP username and password
• Update your WordPress username and password
• Get you set up with CloudFlare security to help prevent stuff like this again in the future.
• Work with Sucuri to make sure everything is complete and locked up tight

If for some reason, God forbid, we are unable to clear the exploit, we will give you a 100% refund so there is no risk to you. All this is done, not only to get you cleaned up from the exploit, but to work to make your site safe and secure so this doesn’t happen again.