In my opinion, the best way to make sure your fix wordpress malware that is is via the use of a WordPress backup plugin. This is a relatively inexpensive, elegant and easy to use way to make sure that your website is accessible to you.
Truth is, there is actually no way, if your site is targeted by a master of this script. What you are about to read below are some precautionary actions you can take to quickly minimize the risk. Odds are a hacker would prefer picking easier victim, another, if your WordPress site is protected.
Exclude my explanation pages - This plugin provides a checkbox,"include this page in menus", which can be checked by default. If you uncheck it, the page will not appear in any listings of webpages (which includes, and is usually limited to, your page navigation menus).
Make a note of your password! I suggest the paid or free version of the secure software *Roboform* to remember your passwords.
Just make sure that you may schedule, and you choose a plugin that is current with release and the version of WordPress, restore and replicate.