It's also important to change admin username and your password if someone needs admin username and your password to login to do the job and helps you with your site. Admin username and your password changes, after all of the work is complete. Someone in their business may not be if the person is trustworthy. Better to be safe than sorry!
Cloning, as it applies to fix malware problem, is the act of creating an exact copy of your WordPress install. What is good is that you can do it. There are a number of reasons why you might want to do this. Here are only a few.
Hackers don't have the power to come to your WordPress blog when you got all these lined up for your security. You definitely can have a WordPress account especially that one that provides big bucks from affiliate marketing to you.
1 step you can take is to delete the default administrator account. This is critical because if you do not do it, a user name that they could attempt to crack is advice already known by malicious user.
Black and phrases that were whitelists based on which area they look within, in a page request. (unknown/numeric parameters vs. known article bodies, comment bodies, etc.).
Software: If you've installed scripts that are free such as Wordpress, search Google for'wordpress security'. You will get many tips.