If your website was hacked today, 9/25/2011, and you have not yet read our status page, please be sure to do so as we are updating it as we have more information.

The attack today was targeted at index files, such as index.html, index.htm, and index.php. If your site was compromised, your index file(s) will need to be restored from a clean backup copy to resolve the issue.

Please Note:

In the solutions below, we reference restoring your index file from a clean backup version. Be sure to replace index files in sub directories as well, as the hack affects more than just the top level index file.

IF YOU DO HAVE A BACKUP - How to fix your site

The recommended solution would be to restore the compromised files from your own backups. You can use either FTP or the cPanel's File Manager for doing this. If you need further assistance with doing this, please see: How to Restore a File from your own Backup.

IF YOU DON'T HAVE A BACKUP - How to fix your site

If you don't have a bacup of your website, there are other methods you can use to fix your website.

Solutions based upon the software you're using
- WordPress
- Premium Website Builder

If you don't have a backup of your site and you don't see your software listed above, in some cases using the copy of your site stored in Google's Cache can help restore your site files. We have a Knowledge Base article that will help you with this task, please see How to use Google's cache to restore a web page.

If you need additional help

Due to the large amount of contacts we are receiving in response to this issue, hold times are quite high on phone calls / live chats / and emails. We do recommend that you review our documentation found here under Quick Links to resolving your hacked site and post comments if you have further questions.

Did you find this article helpful?

We value your feedback!

Why was this article not helpful? (Check all that apply)
The article is too difficult or too technical to follow.
There is a step or detail missing from the instructions.
The information is incorrect or out-of-date.
It does not resolve the question/problem I have.
How did you find this article?
Please tell us how we can improve our Help Center:
Email Address
Optional, but our team may contact you for more information.
Did you find this article helpful?

Comments

2011-09-28 2:54 pm
When I attempt to delete the index.php file in the cgi-bin folder, it restores itself. How do I permanently delete it?
1,243 Points
2011-09-29 3:23 pm
bradm
Staff
Hi Flossie,

How are you trying to delete the file? For example, are you using and FTP client or your cPanel's file manager?

Also, make sure the file doesn't have 000 permissions. If it does, try changing it to 644.

If that does not help, I'd like to look into this further for you. Let me know, and I'll send you an email to where we can correspond further.

Thanks,
- Brad

Post a Comment

Name:
Email Address:
Comment:
Are you a bot?
Submit

Please note: Your name and comment will be displayed, but we will not show your email address.

News / Announcements

Update to SSL Certificates - Certificate Warnings
1969-12-31 11:00 am EST
Hits: 680

Related Questions

Here are a few questions related to this article that our customers have asked:
Ooops! It looks like there are no questions about this page.
Would you like to ask a question about this page? If so, click the button below!

Help Center Search

Current Customers

Email: support@WebHostingHub.com Ticket: Submit a Support Ticket
Call: 877-595-4HUB (4482)
757-416-6627 (Intl.)
Chat: Click To Chat Now

Ask the Community

Get help with your questions from our community of like-minded hosting users and Web Hosting Hub Staff.

Not a Customer?

Get web hosting from a company that is here to help.