Saeed attacker

By the way, Cowboy Bebop is my favorite Anime. Talking about characters, there is also Sagara Sousuke, Solid Snake, Drake from Uncharted and Squall Leonhart.

What you mean “it’s unable to replace the files with the original ones”??
You should be able to overwrite any files in your server, if not, that’s a server side problem, contact your host.

First thing I did was to install bulletproof security, then sweet captcha (This one reduced spam in 100%).

After installing bullet proof, you must follow common configuration steps, then the DDOS tutorial provided in the plugin, because it will protect your xmlrpc.php file that is on your root folder. So everytime an attacker accesses the file, he will get an error 303 page.

Also, make sure to install centrora security and quttera scanner.
Enable every single option in centrora security firewall. Both centrora and quttera have virus scanners, make good use of them. I highly suggest you to use Sucuri Site Check too.

I’ve been monitoring my website and so far the centrora log always show attackers going to xmlrpc.php, and getting blocked.

Centrora will point you some php extensions that should be disabled, read them carefully and see what you can disable.
Also reinstall wordpress.
My last step was followed today, I moved my host account to newer server, it uses mysql 5.5.4, and has a newer apache version that I can’t remember.

After doing the steps, you can use Simple Backup plugin to create your site copies.

Ps: I believe in my case it was related to two things:

First the server, I was using apache 2.2.22, and as described here: http://httpd.apache.org/security/vulnerabilities_22.html

There is some vulnerabilities in that version that were fixed in the next ones.

Second, I’m not sure, but my site’s homepage was an HTML5 script, and I believe there was some outdated javascript, or perhaps I’m wrong, anyway, I removed that page just in case.

Tell me if you have any doubt, good luck.