Cloning your website is just another level in fix wordpress malware scanner that may be very useful. Cloning simply means that you've backed up your site to a completely different place, (offline, as in a folder, in order not to have SEO problems) where you can get it in a moment's notice if the need arises.
There are many ways to pull off this, and a lot involve copying and FTPing files, exporting and re-establishing much more and databases. Some of these are very complicated, so it's important that you select the best one. If you're not of click resources the persuasion, then you might want to look into using a plugin for WordPress backups.
First in line is currently creating a smarter password to your account. Passwords must be made with numbers and characters. You create small plus shifted letters and may combine them. Smarter passwords can be your gateway to zero hackers. Make passwords that are difficult that you can consider.
Install the WordPress Firewall Plugin. Stop and this plugin investigates web requests to identify attacks.
However, I recommend that you install the Login LockDown plugin rather than any.htaccess controls. That will stops login requests from being allowed from a specific IP-ADDRESS for an hour or so after three failed login attempts. It is still possible to access your mobile while and yet you have protection against hackers, if you accomplish that.