Finally, installing the how to fix hacked wordpress site Scan plugin alert you to anything that you might have missed, and will check all this for you. Additionally, it will inform you that a user named"admin" exists. Needless to say, that is the administrative user name. If you wish, you can follow a link and find directions for changing that name. I think that there is a strong password security that is good, and there have been no attacks on the numerous sites that I run, since I followed these steps.
The more powerful approach, and the one I personally recommend, is to use one of the password creation and storage plugins available on your browser. Many people like RoboForm, but I think after a free trial period, you need to pay for it. I use the free version of Lastpass, and I recommend it for those who use Internet Explorer or Firefox. That will generate passwords for you; you use one master password to log in.
There is a section of config-sample.php that is look at here now headed"Authentication Unique Keys." There are four definitions that appear within the block. There is a hyperlink inside that part of code. You need to enter that link into your browser, copy the contents which you get back, and then replace the keys you have with the unique, pseudo-random keys provided by the site. This makes it harder for her latest blog attackers to automatically create a"logged-in" cookie for your site.
You can extend the plugin features with premium plugins like: Amazon S3 plugin, Members only plugin, DropShop etc.. So I think this plugin is a good option and you can use it.
Always keep in mind the security of your blogs depend on how you manage them. Be sure that you follow these strategies to prevent hacks and exploits on sites and your blogs.