Hi,
One of my WP website is being hacked and hacked again. Some files with malicious code are being added to the root directory.
wp-conf.php
wp-content.php
/upload_informations
/upload-your-informations
I can find the term bogel ($bogel=$_GET['cpanel'];) on several files, it it's ring again.
I already reinstalled 2 times the website entirely with a clean (I assume) version one month old. Changed admin passwords, salt keys, ftp password (not Mysql however) I installed Wordfence, sucuri ...
The website is being hacked again in an hour ...
No help from my provider, they block the website ant that's all.
I don't know what else to do ?? Any advices ??