You can… Learn about file permission (on wordpress) Install WordPress Firewall plugin (version 2 for 3+ versions) (this dissalow access to any folder or file indirectly) Hide Your WordPress Version Try to update plugins & Wp install Login Lockdown Plugin (this stops any brute force attemts) Verify that your theme doesnt show “publish by $username” … Read more
I use http://wordpress.org/extend/plugins/limit-login-attempts/ which blocks IPs when login attempts exceed set limit you set. Limit Login Attempts blocks an Internet address from making further attempts after a specified limit on retries is reached, making a brute-force attack difficult or impossible. If you’re on a host where you can install and run root code, look at … Read more
First … I assume you have a backup of your SQL to restore from? It seems odd that you have lost only one table – why not all the tables in the database? Not Hacked htaccess rules corrupt / wp supercache / permalinks?? When you say you can’t login .. is there an error? can … Read more
I understand this isn’t exactly what you’re looking for but these hackers are most likely bots and redirecting them won’t matter at all. I suppose you could modify the below code if you reallllly wanted to but this will redirect anybody looking for an author back to your homepage. RewriteCond %{REQUEST_URI} ^/$ RewriteCond %{QUERY_STRING} ^/?author=([0-9]*) … Read more
The best way to fix this is to have a clean backup of your site’s files and database and set up a fresh wordpress installation. Change all passwords related to the site (hosting, domain etc.), close your current hosting account, set up a new one, and let your host know your site was compromised so … Read more
Uploads directory should be public, or whatever other settings in which the webserver is able to write to it, which in term of website security makes very little difference. You most likely have an unsecure code or unsecure server and there is not much point in rebuilding your site without first fixing those two issues … Read more
If you’re using the same database, then the hack code is sometimes stored in there. The pharma hack uses this technique. Ensure that you have a clean database that you’re installing into also.
Make sure to protect your file directories, don’t make them writable by you only! Red up: http://codex.wordpress.org/Hardening_WordPress And download: http://wordpress.org/extend/plugins/wp-security-scan/
Look at this answer I wrote for a more extensive explanation: Malware on site For a summary: Add a login limiting plugin Move wp-config.php out of the public html folder ( WordPress will look one folder up from its root directory if it isn’t there Use the correct file and folder permissions Do not use … Read more
But if they’re needed by WP I don’t want to compromise site functions. Those are not Core files. It is possible that a plugin has added the files legitimately but the behavior described suggests a hack. Recovering from hacks is off-topic here though, as it usually requires hands-on server access and is often very localized.