nykzhang3

How did you uninstall the site? I recommend going via FTP (FileZilla) and removing all files after doing the uninstall.

That way, nothing will be left when you start again.

Bad idea. That will break WordPress.

WordPress does not allow single quotes on usernames as they are very restrictive to what is allowed. Unless you are in for a long hacking session to modify WordPress core, don’t use quotes on username.

You are missing something on your hack correction process.

If the hack is coming back, you have still malware in your site (called a rootkit or backdoor). I use both iThemes Security and WordFence and both together can find more hacks than just WordFence alone. Try to look for backdoors as they allow for re-hacks.

This document from Securi explains the DarkLeech hack:

https://blog.sucuri.net/2015/03/pseudo-darkleech-server-root-infection.html

Securi has tools to look for this hack.

Can you help us help you? Send more details on the trouble you are having.

I have been using iThemes along with WordFence without problems.

Has it been fixed?

I was planing to use this plugin on a client site, but afraid because of this security vulnerability.