Additionally, it is important to change your password and admin username if someone helps you with your site and needs admin username and your password to login to do the job. Admin username and your password changes, after all the work is finished. Someone in their business may not be, if the man is trustworthy. Better to be safe than sorry!
I back up my blogs regularly using a plugin WP DB Backup. I will restore my blog to the 13, if anything happens. I use my blog to be scanned by WP Security Scan plugin that is free regularly and WordPress Firewall to block asks that are suspicious-looking to fix wordpress malware virus.
Is also significant. You need to backup database and all the files so in the event of a sudden attack, you can easily bring your own blog back like nothing.
Harness Scanner goes through the files on your site place, comment and database tables seeking anything suspicious. You are also notified by it for plugin names that are odd. It does not remove anything, it warns you.
Now we're getting into things specific to WordPress. Whenever you install WordPress, you have to edit the document config-sample.php and rename it to config.php. You need to install the database details there.
However, I recommend that you install the Login LockDown plugin rather than any.htaccess controls. That will stops login requests from being permitted from a specific IP-ADDRESS for an hour or so after three failed login attempts. It is still possible to access your mobile you could try here while and yet you have great protection against hackers, if you accomplish that.