How to clean a Hacked WordPress Website?

Is your WordPress website hacked?

When your WordPress site is hacked or compromised, you can lose your search engine rankings,
expose your readers to viruses, have your reputation tarnished due to redirects to porn or
other bad neighborhood websites, and worst lose your entire website data and get suspended
from your web hosting provider.

To avoid site hack issue you can scure your website using below steps :

1)Keep WordPress up-to-date.
You must always keep your wordpress up to date with the latest version of WordPress.

2) Keep plugins and themes up-to-date
Always upgrade your plugins, themes to their latest versions.
4) Delete any plugins or themes you are not using

5) Delete unwanted folder/files.

5) Limiting access/Protect your WordPress Admin Area

It is important to restrict the access to your WordPress admin area only to people that actually
need access to it.

You can deny wp-admin access to everyone but yourself via an .htaccess file. add the below code
in .htaccess file. Please replacing x.x.x.x with your local machine IP address as displayed on
whatismyip.com

# Block access to wp-admin.
order deny,allow
allow from x.x.x.x
deny from all

You can avoid the brute force attack on your woredpress site by adding below code in .htaccess.

# Allow access to wp-admin/admin-ajax.php
<Files admin-ajax.php>
Order allow,deny
Allow from all
Satisfy any
</Files>

# Block WordPress xmlrpc.php requests
<Files xmlrpc.php>
order deny,allow
deny from all
allow from x.x.x.x
</Files>

Please refer the below link for more information
http://codex.wordpress.org/Hardening_WordPress

At RSHosting.com we offer managed wordpress hosting for your wordpress websites. Our secure and
reliable servers offer the most stable environment for production wordpress websites, and can
be ordered at https://www.rshosting.com/wordpress-hosting/