if anyone else is looking for quick fixes on this it appears there are at least two things tht get done. a domain index page will be replaced and the site can be restored by replacing the index.php.
in my case on a phpbb3 board a redirect code was placed in a forum title & description.
this was the code used:
<META HTTP-EQUIV="Refresh" CONTENT="0;URL=http://www.something.com
I was able to correct this and restore my forum by editing the msql forums table and searching for
the above tag in the description column.
Now I need to figure out how he gained access to my ACP. If there is someone out there that was seeking help as I was, I hope this helps. Apparently when you ask for help you sometimes get instructed to complete an incident report & the post is locked without much help.
It looks like someone is real sensitive to any discussion of phpbb being hacked and is limiting discussion in this area. Which is OK unless you are desperately seeking HELP.