About two days I see that my site (adult) was hacked, I see a lot viruses at my site header and index file.
I started everything from 0: new database, very strong new passwords (more than 20 characters), I imported my site xml version and I installed the better wp security and I activated the all features, and wp firewall, everything OK.
Today my site was hacked again!!!
How? The hacker come from my hosting? It possible that the xml imported file contain a backdoor?
At my wp security I see that after some bad logins today somebody was changed a lot of files from wp-admin. I use the last version of wordpress.
Please help me if you have some time, how can I secure my site?