There is a part of config-sample.php that is led'Authentication Unique Keys.' Four explanations that appear within the block will be found by you. A hyperlink is how to fix hacked wordpress site inside that part of code.You must enter that link into your browser, copy the contents which you return, and change the keys you have with the specific keys given by the website. That makes it harder for attackers to create a'logged-in' dessert for your site.
There are numerous ways to pull off this, and a lot of them involve re-establishing databases and much more and FTPing files, exporting and copying. Some of them are very complex, so it is imperative that you select the one that is right. If you are not of the persuasion that is technical, then you may want to check into using a plugin for WordPress backups.
Yes, you want to do regular backups click here to read of your site. I recommend at least a weekly database backup and a monthly "full" backup. More. Definitely more if you make frequent additions and changes to your site. If you make changes multiple times a day, or have a community of people which are in there all the time, a daily backup should be a minimum.
Now we're getting into things specific to WordPress. You have to rename it to config.php and modify the document config-sample.php, when you install WordPress. You need to set up the database facts there.
Using a plugin for WordPress security only makes great sense. WordPress backups need to be carried out on a regular basis. Do not become a victim as a result of not being proactive about your site!