Webhostinghub & inmotionhosting hacked by Tiger M@te

This post is in English as most of the traffic towards this search will be in English. Today at about 12 o’clock tiger M@te hacked the WebHostingHub.com and inmotionhosting hosting services. I got a call this morning from a friend of mine that uses the same hosting that our websites are down. When i visited the websites it looked like this:

 

Don’t worry all your files and data is still intact and still there. As far as I can tell they hacked all the index files so if you restore those your website will be back up.

You will need to overwrite the code in the index file with the following code, for wordpress sites edit the index file to this (note this is wordpress ONLY):

witchout the space between the < and the ?:

< ?php
/**
* Front to the WordPress application. This file doesn't do anything, but loads
* wp-blog-header.php which does and tells WordPress to load the theme.
*
* @package WordPress
*/

/**
* Tells WordPress to load the WordPress theme and output it.
*
* @var bool
*/
define(‘WP_USE_THEMES’, true);

/** Loads the WordPress Environment and Template */
require(‘./wp-blog-header.php’);
?>

EDIT: Or replace the hacked index file with the file in the ziparchive: indexfile

You do this through a ftp program, as the control panel is down as of 10 minutes ago. So look at the index file in the rootdirectory of your website and overwrite the hacked code.

EDIT: Cpanel is back up. In cpanel go to file manager (it’s under files) –> document root of the site in question. Right click the index file and replace the hacked code with the above code without the space between the < and the ?

If u don’t have a wordpress site and have a backup of your original index file simply replace the hacked code or replace the hacked index file alltogether.

I don’t have any of the other index file backups on hand, but will try to find some.