Finally, fix hacked wordpress database will tell you that there's not any htaccess from the directory. You may put a.htaccess file into this directory if you wish, and you can use it to control access by IP address to the wp-admin directory or address range. Details of how to do this are available on the internet.
An easy way would be to use a few tools. To begin with, do not allow people run a web host security scan to list the documents in your folders and automatically backup your entire web hosting account.
A snap to move - If, for some reason, you want to relocate your website, such as a domain name change or a new hosting company, getting your files at your fingertips can save you oodles of time, headache, and the demand for tech help.
Security plug-ins that were all-Rounder can be considered as a security checker. They provide you with information concerning the weaknesses of the website and scan and check the whole website.
However, I recommend that you set up the Login LockDown find plugin instead of any.htaccess controls. From being allowed after three unsuccessful login attempts from a specific IP address for one hour login requests will stop. You can get into your panel while and yet you have protection against hackers, if you do so.