There is a portion of config-sample.php that's headed'Authentication Unique Keys.' You will find. A hyperlink is repair hacked wordpress site inside that part of code.You copy the contents that you return have to enter that link in your browser, and change the keys you have with the specific keys given by the website. This makes it harder for attackers to create a'logged-in' dessert for your site.
Protect your login credentials - Do not keep your login credentials where a hacker could find them. Store them off, and even offline. Roboform is very good for protecting them, too. Food for thought!
First in line is creating a password for your account. Passwords must be made with numbers and characters. You make small plus altered letters and can combine them. Smarter passwords can be your gateway to zero hackers. Make passwords that only you can consider.
Can you see that folder what if you visit WP-Content/plugins? If so, upload that blank Index.html file inside that folder as well so people can not see what plugins you might have. Someone can visit homepage use this to get access because if your current version of WordPress is current, if you are using a plugin or an old plugin with a security hole.
Oh . And by the way, I was talking about plugins. Make sure it's a secure one, when you get a plugin. Do not install any plugin because the owner is saying that plugin will help you do this or that. Use get a software engineer to examine it carefully, or maybe a test site to look at the plugin. This way is not a threat for your look at this site business or you.