Install the fix wordpress malware cleanup Firewall Plugin. This plugin investigates net requests with heuristics that are simple to recognize and stop attacks that are most obvious.
You can search. You can restore your website by means of your backup files and change everything that must be changed if hackers abruptly hack your website.
Should you ever want to migrate your site elsewhere, such as his response a new web host, you'd have the ability to pull this off without a hitch, and also without needing to disturb your old site until the new one was in place and ready to roll.
Imagine if you visit WP-Content/plugins, can you view that folder? If so, upload that blank Index.html file inside that folder as well so people can not see what plugins you might have. Because if your existing version of WordPress is current, if you're using an old plugin or a plugin with a security hole, then someone can use that to get access.
However, I advise that you install the Login LockDown plugin instead of any.htaccess controls. Login requests will stop from being permitted after three failed login attempts from a specific IP address for one hour. You may still click here to read get into your admin panel whilst away from your office, and yet you still have protection against hackers if you do that.