Since scare tactics seem to be what compels some people to take fix malware problems free a bit more seriously, or at least start considering the problem, let me shoot a few scare tactics your way.
Well, we're talking about WordPress but what's the sense if your computer is at risk of hackers of doing security checks and updates. There are malicious files that can encrypt key loggers. When this happens, no matter what you do, they are easily able to access everything that you type on your keyboard. You can find a good deal of antivirus programs that are good . Search for a credible antivirus program or ask experts.
Yes, you want to do regular backups of your site. I recommend at least a weekly database backup and a monthly "full" backup. More, if possible. If you make changes and additions to your website, definitely more. If you make changes multiple times every day, or have a community check out this site of people which are in there all the time, a helpful hints daily backup should be a minimum.
Now it's time use this person's name and identity and to register for a Facebook accounts. Once I get it all set up, I'll be telling you posing as your friend and asking you to be friends with me on Facebook (or Twitter, or whichever social site).
Free software: If you have installed scripts that are free such as Wordpress, search Google for'wordpress security'. You'll get many tips on how best to make your WP blog secure.