The clean hacked wordpress site Codex has an outline of what permissions are okay. Directory and file permissions can be changed through an FTP client or within the page from your hosting company.
A simple way is to use a few tools that are built-in. First of all, navigate to these guys do not allow YOURURL.com people run a web host security scan, to list the files in your folders and automatically backup your entire web hosting account.
Before you can delete the default admin account, you need to create a user with administrator rights. To do this go to your WordPress Dashboard and click on User -> Create New User. Then enter all the information you will need to enter.
Now we're getting into matters specific to WordPress. Whenever you install WordPress, you have to edit the document config-sample.php and rename it to config.php. You need to set up the database information there.
Change your password, or admin username and your WordPress password and collect and blog here use fantastic WordPress security tips to keep hackers out!