Hackers trying to hacking your WordPress application websites, there are some steps to be secured, Open the wp-config.php file and update to chmod files and folders for you. 

define( ‘FS_CHMOD_DIR’, ( 0755 & ~ umask() ) );
define( ‘FS_CHMOD_FILE’, ( 0644 & ~ umask() ) );

Move wp-config.php above the your website document root directory (public_html).

then, get a robots.txt file correctly configured and a WP security plugin

then create a file name with .htpasswd to block access to wp-admin and wp-login.php

Get file from http://codex.wordpress.org/Editing_wp-config.php