Installing the fix wordpress malware cleanup Scan plugin will check most of this for you, and alert you that you may have missed. Additionally, it will inform you that a user named"admin" exists. That is your administrative user name. You can follow a link and find directions for changing that title, if you wish. I personally think that a password is good enough security, and because I followed these steps, there have been no successful attacks on the sites that I run.
If he has a good point you're among the ones, I might find it a little more difficult to crack your password. But if you're one of those ones that are reactive, I might get you.
You should also place the"Anyone Can Register" in Settings/General to away, and you should have some type of you can try these out spam plugin. Akismet is the one I use, the old standby, but there are many of them these days.
In addition to adding a secret key to your wp-config.php document, also think about changing your user password into something that is strong and unique. A great tip is to avoid phrases, use upper and lowercase letters, and include numbers, although wordPress will let you know the strength of your password. It's also a good idea to change your password frequently - say once every six months.
Using a plugin for WordPress security makes great sense. WordPress backups need to be performed on a regular basis. Don't become a victim because of not being proactive best site about your site!