I was hacked, need some help

Hi

Today someone got into our server via phpmyadmin see below:
--------------
The $cfg['PmaAbsoluteUri'] directive MUST be set in your configuration file!

Your configuration file contains settings (root with no password) that correspond to the default MySQL privileged account. Your MySQL server is running with this default, is open to intrusion, and you really should fix this security hole.
---------------

Can someone give me some advise how to fix this? I am on a unix server and have root access. Please guide me step by step, i am slow but pick up fast I was hacked, need some help

Thanks in advance

 

 

 

 

Top