How to clean a Hacked WordPress Website?
Is your WordPress website hacked? When your WordPress site is hacked or compromised, you can lose your search engine rankings, expose your readers to viruses, have your reputation tarnished due to redirects to porn or other bad neighborhood websites, and worst lose your entire website data and get suspended from your web hosting provider. To avoid site hack issue you can scure your website using below steps : 1)Keep WordPress up-to-date. You must always keep your wordpress up to date with the latest version of WordPress. 2) Keep plugins and themes up-to-date Always upgrade your plugins, themes to their latest versions. 4) Delete any plugins or themes you are not using 5) Delete unwanted folder/files. 5) Limiting access/Protect your WordPress Admin Area It is important to restrict the access to your WordPress admin area only to people that actually need access to it. You can deny wp-admin access to everyone but yourself via an .htaccess file. add the below code in .htaccess file. Please replacing x.x.x.x with your local machine IP address as displayed on whatismyip.com # Block access to wp-admin. order deny,allow allow from x.x.x.x deny from all
You can avoid the brute force attack on your woredpress site by adding below code in .htaccess. # Allow access to wp-admin/admin-ajax.php <Files admin-ajax.php> Order allow,deny Allow from all Satisfy any </Files> # Block WordPress xmlrpc.php requests <Files xmlrpc.php> order deny,allow deny from all allow from x.x.x.x </Files> Please refer the below link for more information http://codex.wordpress.org/Hardening_WordPress At RSHosting.com we offer managed wordpress hosting for your wordpress websites. Our secure and reliable servers offer the most stable environment for production wordpress websites, and can be ordered at https://www.rshosting.com/wordpress-hosting/