I think rebuilding a hacked website on any platform is very difficult, and for someone that isn’t a developer, makes this process so much harder. If your site isn’t too large i.e. less than 1000 resources then try something like this:
-
Scrape all content of your website. Personally I use Google Sheets (I know it’s not the right tool but it is the easiest) you can grab data using
=ImportXML($A2, "//h1")for example -
Download and reprocess/ check all your images. Using something like ImageOptim for Mac, it will optimize the file size but for any image that it can optimize you might want to run it through a virus checker. This is not foolproof but its a good start.
-
Download your CSS files. These should be clean but just run your eye through them to be sure.
-
Don’t download your JS, you want to rebuild this. If you’re using Jquery and other libraries locally, either redownload them from source our use a CDN going forward. Any Custom JS files you have need to be manually checked to ensure that don’t contain malicious code.
-
Reinstall Modx, i’d actually go as far as moving the site root. If you’re on cloud hosting then create a new cloud, if you’re on shared or dedicated hosting then see if you can create a new directory in your web root as you just don’t know what type of malicious files could potentially be left behind.
-
Setup Modx and download your extras. If you have access to your current Modx setup then copy across the chunks, TVs and templates. If you have custom snippets then manually check each one for malicious data.
Starting from scratch is the only sure fire method for ensuring no malicious files are copied across.