Doesn’t seem to be hacked at CF. It looks to be your at host level/ registrar a/c is compromised. Contact your DNS hosting company or if you’ve access to the panel, login to the same and update the nameservers to the default (which you’re using). That’s what you can do and secure your site!
If you have have read my message you will notice I showed that Cloudflare has been made the DNS hosting company. Hoteyebasic.co.za was hosted om my own servers with fixed IP. Is this difficult to understand?