My first step is but I was helped by it. I had a fantastic old fashion pity party. I cried and railed against the evil hackers (that where probably 13 and smarter then me) And I did what I should have done before I started my website. And here is where I would like you to start. Learn how to protect yourself until you get hacked. The thing about fix wordpress malware and why so many of us recommend because it is really easy to learn, it is. That can also be a detriment to the health of our websites. We have to learn how to put in a security fence.
This is great news as it means that there is a community of users and developers that could improve the platform. However there is a group of people attempting to achieve something, there will always be people who will attempt to take down them.
Harness Scanner goes in search of anything suspicious through the this article files on your site comment database and post tables. You are also notified by it for odd plugin names. It doesn't remove anything, it simply warns you for threats.
Another step to take to make WordPress more secure is to always upgrade WordPress to the latest version. The reason behind this is that with each update there come fixes for security holes which makes it essential to update.
However, I recommend that you set up the Login LockDown plugin rather than any.htaccess controls. That will stops login requests from being allowed from a for an hour or so after three failed login attempts. If you accomplish that, you can still access your mobile while and yet you have great protection against hackers.