Finally, fix wordpress malware virus will tell you that there is no htaccess from the directory. You may put a.htaccess file into this directory if you wish, and you can use it to control access from IP address to the directory or address range. Details of how to do that are available on the net.
Do not depend on your Web host - Many people rely on their web host to"do all that technical stuff for me", not realizing Web Site that sometimes, they don't! Far better to have the responsibility lie instead of out of your control.
Move your wp-config.php file one directory up from the WordPress root. WordPress will search for it there if it can't be found in the main directory. Also, nobody will have the ability to read the file unless they've FTP or SSH access.
Note that you should try this step for setups. You'll also need to change all the table names within the database, if you would like to get it done for existing installations.
Those are. Set a blank Index.html file in your folders, run your web host security scan and backup your over here entire account.