I've had two WordPress blogs hacked into formerly. That was at a time when I was doing almost no online marketing, and until I found time to handle the situation (weeks later), these sites were penalized in the major search engines. They weren't eliminated, however the evaluations were reduced.
Install the fix hacked wordpress Firewall Plugin. Stop and this plugin investigates net requests with WordPress-particular heuristics that are straightforward to identify obvious attacks.
Should your website's server go down for will proceed with this. You will make no sales, get signups or no visitors to your website, until you have the site and in short, you're out of business.
Move your wp-config.php file up one directory from the WordPress root. WordPress will search click here to read for it if it cannot be found in the root directory. Also, nobody will be able to read the document unless they've SSH or FTP access.
Now we are getting into matters. Whenever you install WordPress, you need to edit the file config-sample.php and rename it to config.php. You need to set up the database information there.
However, I advise that you install the Login LockDown plugin rather than any.htaccess controls. That will stops login requests from being permitted from a certain IP-ADDRESS for an hour or so after three failed login attempts. You can still access your admin cell while and yet you still have protection against hackers if you accomplish this.