Cloning, as it applies to fix wordpress malware fix, is the act of making an exact copy of your WordPress install. What is good is that in just a few clicks, you can do it with the right software. There are a lot of reasons why you might want to do this. Here are just a few.
Protect your login credentials - Do not keep your login credentials where a hacker could locate them. Store them off, as well as offline. Roboform is good for protecting them. Food for thought!
Should you ever wish to migrate your website elsewhere, like a new hosting company, you'd have the ability to pull this off without a hitch, and also without having to disturb your old site until the new one was in place and ready to roll.
Imagine if you go to WP-Content/plugins, can you see that folder? If so, upload this blank Index.html file into that folder as well so people can't view what plugins you have. find out Someone can use this to get access because if your version of WordPress is up to date, if you're using a plugin or an old plugin with a security hole.
However, I recommend that you set up the Login LockDown plugin as opposed to any.htaccess controls. That will stops login requests from being permitted from a for an hour or so after three failed login attempts. If you accomplish this, you can still access your admin mobile while from your workplace, and yet you have protection against hackers.