I have had two WordPress blogs hacked into formerly. That was at a time when I was doing virtually no internet marketing, and until I found time to deal with the situation (weeks later), these sites were penalized in the major search engines. They were not eliminated, however the evaluations were reduced.
There is a portion of config-sample.php that is headed'Authentication Unique Keys.' You will find. A hyperlink is fix wordpress malware attack inside that part of code.You have to enter that link in your browser, copy the contents that you return, and change the keys you have with the specific, pseudo-random keys given by the website. That makes it harder for attackers to generate a'logged-in' dessert for your site.
Strong passwords - Do your best to use a strong password, alpha-numeric. Easy to remember passwords are also easy to guess!
Keep your WordPress Installation up to date - One of the simplest and most valuable tasks you can do yourself is to ensure that your WordPress installation is upgraded. WordPress provides you a notice on your dashboard, so there is really no reason not to do this.
Now we are getting into things. You must rename it to config.php and modify the file config-sample.php, when you install WordPress. You will need to deploy the database facts there.
There is another problem you have with WordPress. People know they also could just drop by with your login form and where they can login and try outside a different combination her comment is here of passwords and user accounts. In order to prevent this from happening you need to install Login Lockdown. It is a plugin that only lets users try to login with a wrong password three times. Following that the IP address will be banned from the server for a specific timeframe.