I have a wordpress based website http://www.buycouponcodes.in/
Someone hacked it and upload wp-apps.php and wp-count.php file in its home directory, wp-apps.php file called in footer.php file.
I have changed everything like admin, security question, mysql password etc.
But few days my website showing same wp-apps.php and count file.
can anyone tell me ? how to stop this hacking?
what is the main loophole from where hacker is doing this?
Please help me..
The blog I need help with is aeesoft.wordpress.com.