fix wordpress malware removal Watch out form entries. You may useRegexp to process the information . You can even define preloaded factors as form data in the kind of checkboxes, radiobuttons etc..
Do not depend on your internet host - Many people rely on their web host to"do all that technical stuff for me", not realizing that sometimesthey do not! Far better to have the responsibility lie with you, instead of out of your control.
Yes, you need to do regular backups of your site. I recommend at least a weekly database backup and a monthly "full" backup. More, if at all possible. Definitely, if you make changes and additions to your site. If you make changes multiple times a day, or have a community of people that are in there all the time, a backup should be a minimum.
You can extend the plugin features with premium plugins such as: Amazon S3 plugin, Members only plugin, DropShop etc.. So I think you can use it and this plugin is a good choice.
Implementing all of the above will probably take less than an hour to complete, while creating your WordPress site much more resistant to intrusions. Websites were cracked this past year, largely due go right here to easily preventable safety gaps. Have yourself prepared and you're likely to be on the safe side.