Is it possible for me to restore my SQL databases? How?
My Wordpress blog / SQL database was hacked early Saturday morning by “Kid Fantasy” It’s been over two days and still no response from support. I had a friend do a security scan of the server and this is what he found:
I think that your web server has been totally
compromised. Of specific note, there is an IRC proxy service running on port 31337 (which is 'leet-speak for elite) and a telnet servic running (Probably a back door installed for continued access). Telnet = bad, but is especially suspicious when running alongside ssh. (Which is a secure version of telnet)
I have enclosed a security scan of your website that was taken last night, printed to a pdf.
Another note. This morning I found that your DNS was broken. Even if your web site and server were working perfectly, this would still be completely debilitating.
I am downloading the backup files from the hidden .snapshot directory as I type, but am trying to findout if it is possible to restore my SQL files. Also, my concern is: if the above is not corrected and I am forced to start from scratch, what’s to prevent ‘Kid Fantasy’ from hacking my site again? Any pointers to hardening my site would be appreciated.