I have had two WordPress blogs hacked into in the past. That was at a time when I was doing very little internet marketing, and until I found time to address the situation (months later), these sites were penalised in the search engines. They were not removed, but the rankings were reduced.
There is a part of config-sample.php that is headed'Authentication Unique Keys.' Four explanations that appear inside the block will be found by you. There is a hyperlink fix hacked wordpress inside that part of code.You change the keys you have with the pseudo-random keys supplied by the website, copy the contents that you return, and must enter that link in your browser. That makes it harder for attackers to generate a'logged-in' dessert for your site.
Protect your login credentials - Don't keep your login credentials where they might be found by a hacker. Store them offsite, as well as offline. Roboform is for protecting them very good . Food for thought!
A snap to move - If, for some reason, you need to relocate your site, such as a domain name change or a new hosting company, having your files at your fingertips can save you oodles of time, hassle, and the need for tech help.
Now we are getting into things. Whenever you install Full Report WordPress, you have to edit the document config-sample.php and rename it to Full Report config.php. You need to set up the database information there.
However, I advise that you install the Login LockDown plugin instead of any.htaccess controls. That will stop login requests from being permitted from a certain IP address for one hour after three unsuccessful login attempts. If you do so, you may access your panel whilst and yet you still have protection against hackers.