Attack to your webspace - Webpage need code cleanup

Attack to your webspace: 1&1 analysis and urgent indications! We **Need the website back up and running & the code to be cleaned up.** ****************************************************************************** 1. Analysis of the attack ****************************************************************************** 1.1 The hackers processed the attack through a security leak in your following software: timthumb 1.2 Via this security leak, the hackers have uploaded the following malicious files to your webspace: ~/wp-admin/css/[login to view URL] + 100 other files 1.3 In order to impede further attacks, we have disabled these files. Please note that part of your websites may be impaired. ****************************************************************************** 2. Required measures ****************************************************************************** In order to reactivate your websites and re-establish the security of your 1&1 account, observe the following instructions. 2.1 Replace your following software with an updated and secured version: timthumb You will further information on: <[login to view URL]> Please note: Hackers will very probably return to your website. This means that the attack will reoccur as long as this piece of software is not secured. 2.2 Do your scripts still run on PHP 4? Upgrading your PHP configuration to PHP 5 provides an important security improvement and impedes attacks of this sort. Thus, please also upgrade of your PHP version to PHP 5. You will find all required information for upgrading on: <[login to view URL]> 2.3 Delete all malicious files mentioned here above. These files are currently disabled, but should not remain on your webspace. ****************************************************************************