There is an undetermined number of sites hosted at GoDaddy Server that have been attacked and exploited and unfortuanely Mine is one among them. The scenario is the same as a few months ago: Malware is injected into the .php files(WordPress) on the hosted sites, and the visitors of a site are getting redirected to a third website which injects a virus into the visitors’ computer. (GoDaddy sites hacked – myblindstudioinfoonline.com and Hilary Kneber )
All the sites we’ve seen so far contain the following javascript added to all PHP files:
<script src="https://myblindstudioinfoonline.com/ll.php"
Which are generated by a very long eval(base64_decode line:
eval(base64_decode("aWYoZnVuY3Rpb....
Now i had restored all my webpages back to normal. Now I really hate those hackers!
Wasted more than 5 hours in recovery itself!
If you’re on GoDaddy Server & hosted WordPress Website, a major malware infection is going around. Kindly check yours and get solved soon!
Related Readings and Observations
How my wordpress blog got attacked and restored How my wordpresss blog got attached and restored an awesome journey to care about web security. If you are a wordpress blog owner then it is a must to focus on security.- Nifty and Bank Nifty Very Close to All time High Nifty and Bank Nifty currently trading very close to its all time high made on the Union Budget 2014 event 7809 and Bank Nifty made a All time high around Election 2014 results 15742.
- Dow Jones Slope Indicator Update
Chart of Dow Jones shows the Slope Indicator with 20 Period(Short term) and 100 Period(Long term) trend both signals a positive trend(Long & Short term). Medium term […]
- Gold in Breakout or Breakdown Zone? As per 13-13 Wilders moving average channel offset trading system Gold on the EOD chart is in range bound between the support zone 1718 and the resistance zone 1754. Breakout or Breakdown […]
- Nifty Weekly Charts Review with 5EMA High-Low Trading System Nifty Weekly Charts is shown with 5EMA High-Low indicator applied on top of it. Nifty is trading for the past two weeks between the 5EMA High and 5EMA low on the weekly charts. Currently […]
- Nifty and Infy 500 Tick Charts and Daily Profile Charts Nifty futures turned to positional buy mode in the 500 Tick Charts during yesterday's noon session. Currently the support zone come near 5527 and reverse the position to sell mode if the […]
An exploit affected PHP files on approximately 150 Go Daddy accounts Friday afternoon. Go Daddy’s Security Team worked quickly to clean and restore these websites, however, we have detected additional customer sites that may currently be experiencing difficulties due to this same attack.
Go Daddy’s Security Team has identified the cause. Our forensics have determined malicious files are being uploaded via FTP to customer websites. Go Daddy is asking all customers who believe they have a problem to change their FTP passwords.
Meantime, our team is working swiftly to restore all affected websites and appreciates customer feedback. Go Daddy will continue to monitor as long as it takes to ensure our customer accounts are clean.
If you suspect your site was impacted, please fill out our security submission form, located here -- http://www.godaddy.com/securityissue.
Thank you,
Todd Redfoot
Go Daddy Chief Information Security Officer
Hi Rajandran R,
I guess you could have used the steps given in this link…
http://hubpages.com/hub/Godaddy-Malware-Issue-Fixed
dont know how the hell they made this good tool, but it works for sure…
We surely need some more people like these… 🙂