I have had two WordPress blogs hacked into in the past. That was at a time when I was doing very little internet marketing, and until I found time to address the situation (months later), these sites were penalised in the search engines. They were not removed, but the rankings were reduced.
The how to fix hacked wordpress site Codex has an outline of what permissions are acceptable. Directory and file permissions can be changed through an FTP client or within the administrative page from the hosting company.
Well, we are talking about WordPress but what's the sense of performing security checks and upgrades if your computer is in danger of hackers. There are malicious files which can encrypt key loggers on your PC. No matter what you do, they are easily able to access everything that you type on your keyboard when this happens. advice You can find a good deal of good antivirus programs online. Search for a credible antivirus program or ask experts about this.
Exploit Scanner goes through the files on your site place, comment and database tables. You are also notified by it for odd plugin names. It does not remove anything, it simply warns you.
In addition to adding a secret key to your wp-config.php file, also consider changing your user password to something that is strong and unique. A great idea is to avoid phrases, use letters, and include amounts, although wordPress will let you know the strength of your password. It's also a good idea to change your password regularly - say once every six months.
However, I recommend that you set up the Login LockDown plugin as opposed to any.htaccess controls. That will stops login requests from being allowed from a for an hour or so after More hints three unsuccessful login attempts. You can still access your admin cell while from your office, and yet you have good protection against hackers if you accomplish that.