Year and a half educated us that WordPress security shouldn't be taken lightly by any means. Between 15% and 20% of the world's high traffic sites are powered by WordPress. The fact it is an Open Source platform and everyone has access to its Source Code makes it a tempting prey for hackers.
Cloning, as it applies to fix wordpress malware protection, is the act of making an exact replica of your WordPress install. What is good is that in just a few clicks, you can do it with the right software. There are a lot of reasons why you might want to do this. Here are only a few.
There are ways to pull this off, and many of them involve re-establishing more and databases and FTPing files, exporting and copying. Some of them are very complicated, so it's imperative that you select the one that is right. Then you might want to look into using a plugin for WordPress backups, if you are not of the technical persuasion.
I don't think there is a person out there that after learning just how much of a problem WordPress hacking is that it is a good idea. Something I've noticed over the years is that when it comes to securing their blogs, bloggers seem to be stuck in this state.
Can you view that folder what if you visit WP-Content/plugins? If so, upload this blank Index.html file inside that folder as well so people can't view what plugins you might have. Because even if your version of WordPress is up to date, if you are using an old plugin or a plugin using a security hole, someone can use that to get access.
Just ensure which you can schedule, and you choose a plugin that is up to date with the current version and release of WordPress, her latest blog restore and clone.