The fix wordpress malware fix Codex has an outline of what permissions are okay. File and directory permissions can be changed either via an FTP client or within the administrative page from your web host.
You can search for software that will backup your database and files. It is easy to restore your site with the use of your backup files and change, if hackers suddenly hack your website.
So what is the solution you should pick? Out of all the options you can make, which one should you choose and which one is ideal for you specifically now?
Along additional hints with adding a secret key to your wp-config.php file, also think about changing your user password to something that is strong and unique. WordPress will let you know the strength of your password, but include numbers, visit use letters, and a good tip is to avoid phrases. It's also a good idea to change your password regularly - say once.
The plugin should be regularly updated play nice with of your other plugins to remain our website current with the latest WordPress release and have WordPress cloning and restore capabilities. The ability to clone your site (in addition to regular backups) can be useful if you ever need to do an offline site redesign, among other things.