In my view, the best way to ensure that your that is fix wordpress malware plugin is through the use of a WordPress backup plugin. This is a fairly inexpensive, elegant and easy to use way to make certain your site is accessible to you in case of a disaster.
A simple way is to use a few tools. First of all, do not allow people run a web host security scan, to list the files in your folders and automatically backup your web hosting account.
It's a WordPress plugin. They're drop dead simple to install, have all the features you need for a job like this, and are relatively inexpensive, especially my link when compared to having to hire someone to get this done for you.
Along with adding a secret key to your wp-config.php file, also consider changing your user password into something that's strong and unique. WordPress will let you know the strength of your password, but a good tip is to avoid common phrases, use letters, and include amounts. It's also a good idea to change your password frequently - say once every six months.
You do think about needing security when your site is new but you dig this do have to protect yourself and your investment. Having a site go down and not having the ability to restore it may mean a loss of consumers who probably won't remember to search for your website go to this web-site again later and can't find you. Don't let that happen to you. Back your site up as soon as you get it started, and schedule backups for as long as the site is operational. This way, you will have peace and WordPress security of mind.