[Open] Problem URGENT

[regency]

I have a reseller account, and I have a hard time trying to access some of my domains. I get the ff page:

---------------
Status-x Ownz Your Box
phr4xz[at]gmail.com

uname -a

Linux ferrari.websitewelcome.com 2.4.26-grsecvx #1 SMP Thu Apr 29 06:12:42 EDT 2004 i686 i686 i386 GNU/Linux

irc.phey.net /join #Status-x

Greetz t0: p4mp3r, SrOscuro, YC, FilhOte, DiaBolAx, Terror_br, Creative_mx
----------------

I've messaged both your yahoo messenger techs but neither seem to be interested in helping me out, I'm most disappointed. These sites have been down for awhile now, and I really need answers, thanks. I sent an email to support@hostgator, please look into it, thanks

[DStar]

Glad I'm not the only one who was hacked today. :-/

They took the server down for a while but it's back up now. Not all my sites were hacked but I don't know why some of them weren't, or if the vulnerability is fixed yet.

The hack was only on the index.html

[DStar]

I have fixed the index.html of most of the sites I had that were affected. 73% of my hosted domains were affected by this.

I have been waiting for several hours to find out what the problem was and whether the vulnerability has been fixed. Other people in my household went to bed an hour ago and I have to get up early.

Is there any idea what the vulnerability was and has it been fixed?

(You don't get a hacker message from apache just having a problem and wiping out the index.html... that usually gives a blank index.html not one with poorly written code proclaiming a hack.)

[GatorJustin]

Several sites were the targets of a de-facement and were vulrnerable due to insecure scripts. All sites were targeted, only 10% were affected.

All that needs to be done is for anyone affteced to re-ipload their index.htm file. We made a few changes and blocked the defacers, so you should be ok now.

[DStar]

Thank you.

[ReGigi]

Which were the insecure scripts?

This affected a flat HTML site as well - one that DOESN'T have any scripts anywhere.