If you want to protect your wordpress website admin folder wp-admin folder by htaccess file. You can check How to deny IP address to your folder. In your wp-admin folder place a .htaccess file, and add following codes:
allow from 220.127.116.11
deny from all
18.104.22.168 is your own IP address. So only you yourself can access your wp-admin folder.
You also need to secure your wp-login.php folder in your public root directory. Just add following codes into the htaccess file in your public root directory that have wp-login.php file:
.COM only $8.99|
.com $8.99, .info $4.99, .org $9.99, .net $10.99, .co $9.99
Unlimited Cpanel Website Hosting From $3.33/mo
Managed WordPress Hosting From $5.59/m
VPS from $29/m
Dedicated Server from $129/m
QuickShopping Cart from $9.99/m
More information : Cpanel.Powerhoster.com
<Files wp-login.php> Order Deny,Allow Deny from all Allow from 22.214.171.124 </Files>
126.96.36.199 is your own IP address. Right now, only you can access your wp-admin folder and wp-login.php file.
Even though, you also need some secure plugins to protect your wordpress website.