Well after the last two weeks I now consider myself an expert in installing Wordpress blogs on self hosting and a virus deletion technician extraordinaire. I am now accomplished at securing a Wordpress blog.
The reason why, I am hosted at Go-Daddy and that whole site has been infected by a malaware bug. This is a php script that infects every site on the Go-Daddy host. Reports are now coming in that other hosting accounts are being infected.
There is a report that Fort Knox lost their site from this very same attack.
If you have any sort of hosting, go to your site, look at the page source and if you see at the bottom a script calling "http://holasionweb dot com/oo dot php" - then be prepared to lose everything.
I had twelve sites infected and rebuilt each one by hand. Lost a lot of money in adsense and affiliate sales.
I despise hackers who do this type of thing. Anyone else having the same problem, just contact me for a very easy and quick fix. Its free, so don't think I am riding on the hackers coat tails to make a few bucks.
Edit: To save on receiving so many emails I actually put up a hubpage detailing the fix. No links in the hubpage or anything self promoting. Just hope I can help someone else the anguish I went through.
Terry I am sorry to hear that. I have a few over there I will go check on.
Bummer you had to rebuild them all, a spiteful selfish act.
I have had this virus attack me 4 maybe 5 times now and hits every php website I have on godaddy. I am not sure if its hitting my html websites as I believe it might put in a different code, something to do with before the body and a document_write script but cant work that one out.
I now back up at the end of every day with a complete website clean script and as I check the website every time I make a change which is every day and as soon as it hits I then upload the new website straight away.
Each time it infects it puts a new script at the bottom of the page so its not always an oo.php string, it changes each time, so make sure its cleaned out properly.
You say you have a way of cleaning it out. I am looking at doing something with my SSH files at godaddy on info I found in a previous thread but until I can get rid of it for good I am being really cautious as I lost 3 days on the first attack.
thanks
Serena
Hi Serena, I wrote this hub which is repeating Securi's advice and is a fix.
http://hubpages.com/hub/How-To-Remove-T … code-Virus
Save the script in the Hub as wordpress-fix.php and load it to your index. Then add wordpress-fix.php as an extension to your domain name.
I did this on all of my sites and bookmarked each site under a folder I called malaware. I now just go to the folder and click "open All in tabs' and let it run. I do this everytime I sit at the computer.
Just got infected about one hour ago again, I ran the script and it is all now clean.
This script will not need the ssh approval from G-Dy.
Reports are now coming in that other web hosting sites are now being infected.
If you have any hosting at all, you must check your sites as once Google finds the threat they will tag your site a threat site.
Just open your url's to your sites and you will soon see if your infected or not.
Lean Mit college and university have just been hit, so no one is safe.
The fix in my hubpage will work to remove this latest attack.
Terry, if you google it, you don't see much except for this thread. Somehow it makes me thinking the virus is not THAT bad, and did not affect a whole lot of users.
Really!
http://www.google.com.au/search?hl=en&a … p;gs_rfai=
That's out of 1.8 million entries.
And..
http://blog.sucuri.net/2010/05/continui … daddy.html
And..
http://www.wpsecuritylock.com/wordpress … e64-virus/
http://www.google.com.au/search?hl=en&a … amp;tab=wn
If you really want to go there... Zero news on this stuff and godaddy... I don't believe you Terry. Nice self promotinal trick though...
Ouch!!
http://wordpress.org/support/topic/394310
For anyone else here is a free virus fix that Wordpress org recommend.
http://www.deepjava.com/Trinetra_Ninopl … emover.jsp
Just checked one of my sites today after putting up a new hubpage.
It was infected again. The time is 11.00am Monday, 14 June 2010 Australian time.
If you have a Go-Daddy hosted wordpress blog, you had better check it.
It seems this virus has returned after a few weeks.
by freecampingaussie 13 years ago
I have made blogs with blogger & find I can do that ok ( I think !) is there any thing simular for making a free website as I am not very clever doing that kind of thing .Kris
by Connie Smith 11 years ago
I need serious help! I am taking a web design class and my final project -- due in TWO weeks -- is my website, done through Dreamweaver. I do NOT want a free site. I plan to use the site so want a good business site. I am looking for dependability and a site that is easy for...
by Nathan Bernardo 11 years ago
First of all, I want to say that I am not considering leaving Hubpages. However, I am seriously considering starting my own website/blog, in addition to keeping my HubPage account. So, here's my understanding on how to go about starting my own site, bear in mind I don't know a lot about it: Buy and...
by saleheensblog 12 years ago
LOL, not indeed. Whatever, I need to know something from you people now. As I am earning some money online I feel myself "money will come" confident now to invest for creating my OWN website. Here and there I have read some info about creating a website, I have thought about it a...
by leigia67 8 years ago
I am considering creating a web site and would appreciate comments/suggestions. I am fairly new to this and the only web hosting/creation site that I know is godaddy.com but I am sure there must be more.
by pgrundy 14 years ago
I know that several hubbers here set up separate web sites under domain names they own themselves. I would appreciate any feedback or advice on the best way to do this especially for people (like me) who aren't total techies but do have basic web experience. Which web hosting services do you...
Copyright © 2024 The Arena Media Brands, LLC and respective content providers on this website. HubPages® is a registered trademark of The Arena Platform, Inc. Other product and company names shown may be trademarks of their respective owners. The Arena Media Brands, LLC and respective content providers to this website may receive compensation for some links to products and services on this website.
Copyright © 2024 Maven Media Brands, LLC and respective owners.
As a user in the EEA, your approval is needed on a few things. To provide a better website experience, hubpages.com uses cookies (and other similar technologies) and may collect, process, and share personal data. Please choose which areas of our service you consent to our doing so.
For more information on managing or withdrawing consents and how we handle data, visit our Privacy Policy at: https://corp.maven.io/privacy-policy
Show DetailsNecessary | |
---|---|
HubPages Device ID | This is used to identify particular browsers or devices when the access the service, and is used for security reasons. |
Login | This is necessary to sign in to the HubPages Service. |
Google Recaptcha | This is used to prevent bots and spam. (Privacy Policy) |
Akismet | This is used to detect comment spam. (Privacy Policy) |
HubPages Google Analytics | This is used to provide data on traffic to our website, all personally identifyable data is anonymized. (Privacy Policy) |
HubPages Traffic Pixel | This is used to collect data on traffic to articles and other pages on our site. Unless you are signed in to a HubPages account, all personally identifiable information is anonymized. |
Amazon Web Services | This is a cloud services platform that we used to host our service. (Privacy Policy) |
Cloudflare | This is a cloud CDN service that we use to efficiently deliver files required for our service to operate such as javascript, cascading style sheets, images, and videos. (Privacy Policy) |
Google Hosted Libraries | Javascript software libraries such as jQuery are loaded at endpoints on the googleapis.com or gstatic.com domains, for performance and efficiency reasons. (Privacy Policy) |
Features | |
---|---|
Google Custom Search | This is feature allows you to search the site. (Privacy Policy) |
Google Maps | Some articles have Google Maps embedded in them. (Privacy Policy) |
Google Charts | This is used to display charts and graphs on articles and the author center. (Privacy Policy) |
Google AdSense Host API | This service allows you to sign up for or associate a Google AdSense account with HubPages, so that you can earn money from ads on your articles. No data is shared unless you engage with this feature. (Privacy Policy) |
Google YouTube | Some articles have YouTube videos embedded in them. (Privacy Policy) |
Vimeo | Some articles have Vimeo videos embedded in them. (Privacy Policy) |
Paypal | This is used for a registered author who enrolls in the HubPages Earnings program and requests to be paid via PayPal. No data is shared with Paypal unless you engage with this feature. (Privacy Policy) |
Facebook Login | You can use this to streamline signing up for, or signing in to your Hubpages account. No data is shared with Facebook unless you engage with this feature. (Privacy Policy) |
Maven | This supports the Maven widget and search functionality. (Privacy Policy) |
Marketing | |
---|---|
Google AdSense | This is an ad network. (Privacy Policy) |
Google DoubleClick | Google provides ad serving technology and runs an ad network. (Privacy Policy) |
Index Exchange | This is an ad network. (Privacy Policy) |
Sovrn | This is an ad network. (Privacy Policy) |
Facebook Ads | This is an ad network. (Privacy Policy) |
Amazon Unified Ad Marketplace | This is an ad network. (Privacy Policy) |
AppNexus | This is an ad network. (Privacy Policy) |
Openx | This is an ad network. (Privacy Policy) |
Rubicon Project | This is an ad network. (Privacy Policy) |
TripleLift | This is an ad network. (Privacy Policy) |
Say Media | We partner with Say Media to deliver ad campaigns on our sites. (Privacy Policy) |
Remarketing Pixels | We may use remarketing pixels from advertising networks such as Google AdWords, Bing Ads, and Facebook in order to advertise the HubPages Service to people that have visited our sites. |
Conversion Tracking Pixels | We may use conversion tracking pixels from advertising networks such as Google AdWords, Bing Ads, and Facebook in order to identify when an advertisement has successfully resulted in the desired action, such as signing up for the HubPages Service or publishing an article on the HubPages Service. |
Statistics | |
---|---|
Author Google Analytics | This is used to provide traffic data and reports to the authors of articles on the HubPages Service. (Privacy Policy) |
Comscore | ComScore is a media measurement and analytics company providing marketing data and analytics to enterprises, media and advertising agencies, and publishers. Non-consent will result in ComScore only processing obfuscated personal data. (Privacy Policy) |
Amazon Tracking Pixel | Some articles display amazon products as part of the Amazon Affiliate program, this pixel provides traffic statistics for those products (Privacy Policy) |
Clicksco | This is a data management platform studying reader behavior (Privacy Policy) |