The fix wordpress malware protection Codex has an outline of what permissions are okay. File and directory permissions can be changed through an FTP client or within the administrative page from your web host.
There are ways to pull off this, and a lot of them involve copying and FTPing files, exporting and re-establishing databases and much more. Some of these are very complex, so it is imperative that you go for the right one. Then you might want to check into using a visit our website plugin for WordPress backups if you're not of the persuasion that is technical.
This is very handy plugin, Get More Info protecting you against brute-force password-crack strikes. It keeps track of the IP address of every failed login attempt. You can configure the plugin to disable login attempts for a selection of IP addresses when a certain number of attempts is reached.
Now we're getting into things. You have to rename it to config.php and modify the file config-sample.php, when you install WordPress. You need to set up the database facts there.
Just make sure that you may schedule, and you decide on a plugin that is current with the current version and release of WordPress, restore and replicate.