Installing the fix malware problem Scan plugin will check all this for you, and alert you that you may have missed. It will also tell you that a user named"admin" exists. That is the user name. You can follow a link and find instructions if you wish. Personally, I believe that a strong password is good security, and since I followed those steps, there have been no attacks on the several go to these guys blogs that I run.
A simple way to maintain WordPress safe would be to use a few tools that are built-in. To begin with, do not allow people to list the documents run a web host security scan and automatically backup your web hosting account.
Maintain control of your assets that are online - Nothing is worse than having your livelihood in someone else's hands. Why take chances with something as important as your site?
Along with adding a secret key to your wp-config.php document, also consider changing your user password to something that is strong and unique. A good tip is to avoid phrases, use letters, and include numbers, although wordPress will let you know the strength of your password. It's also a good idea to change your password frequently - say once.
Do your homework and some hunting, but if you're pressed for time and need to get this done once and for all, try out the WordPress security plugin that I internet use. It's a relief to know that my site (and company!) are secure.