repair hacked wordpress site will tell you that there's no htaccess from the wp-admin/ directory. You can put a.htaccess file within this directory if you wish, and you can use it to control access from IP address to the wp-admin directory or address range. Details of how to do this are available on the net.
No software system is resistant to vulnerabilities and bugs. Security holes will be found and guys will helpful resources do their best to exploit them. Keeping your software up-to-date is a fantastic way because software vendors will mend their products once security holes are found.
Harness Scanner goes seeking anything suspicious through the files on your site comment database and place tables. You are also notified by it for plugin names click here to read that are unusual. It does not remove anything, it simply warns you for possible threats.
If you aren't currently running the latest version of WordPress, upgrade now. Similar to keeping your door unlocked when you leave for vacation, leaving your site on an old version is.
Do your homework and some hunting, but if you're pressed for time and need to get this try the WordPress security plugin find out here now that I use. It's a relief to know that my website (and company!) are secure.