Cloning, as it applies to fix wordpress malware virus, is the act of creating an exact replica of your WordPress install. What is good is that with the correct software, you can do it. There are a lot of reasons. Here are only a few.
The approach, and the one I recommend, is to use one of the generation and storage plugins available on your browser. Many people like RoboForm, but I believe after a trial period, you have to pay for it. I use the free version of Lastpass, and I recommend it for those of you who use Firefox or Internet Explorer. That will generate secure passwords for you; then you use one master password to log in.
This is very useful plugin, protecting you against brute-force strikes that are password-crack. It keeps track of the IP address of every login attempt. You can configure the plugin to disable login attempts for a selection of IP addresses when a certain number of failed attempts is reached.
BACK UP your site and keep a copy on your own computer and off-site storage. Back if you have a website that is very active. You spend a lot of money and time on your website, do not skip this! Is BackupBuddy, no back up your files, visit this website widgets, database and plugins. Need to move your website to another server, this will do it in under a few minutes!
There is. People always know they also could just drop by your login form and where they can login and try a different combination of user accounts and passwords out. So as to stop this from happening you need to install Login Lockdown. It's a plugin that lets users attempt to login with a wrong password three times. After that the IP address will be banned from the server for a certain timeframe.