Yesterday my other blog technochase was hacked. I was very frustrated and scared at the same time because this was my first time encountering this kind of problem. Considering that I have an up-to-date version of everything plus I have very very secured passwords and yet this happened. This was one of my biggest fears and in fact very anxious about it thinking "What if I was hacked? What will I do when that time comes?" Well that day finally came..
A hacker basically injected a deadly malware on my site. That certain blog of mine runs on a wordpress platform unlike this blog that runs on blogger.
What happens is when someone tries to view my site, it redirects the user to a website telling him that the computer is badly infected with a virus and then a pop up will appear forcing you to download the certain file and install it on your computer.
So what did I do?
I remained CALM.
That's right, I calmed down.. I realized panicking won't do anything. I focused on one thing, and that is to set my mind that I know this'll be fixed. I can fix this!
Realizing that godaddy has a very crappy support, I just started researching on my own. I browsed about similar hack issues and found out that I was not alone. Many other blogs were hacked that day aswell. At first I thought this is about another godaddy issue, but I later found out that many other hosting sites got targetted by the hacker too.
One of the advises I got from reading help support forums concerning this issue is to simply clean everything. I was like, "WTF?! Everything?! I still got lots of things to do! I can't do this now!" But if I don't, my rankings would be at stake. Jeez! So I had no choice but to have some coffee ready because I'd be on nocturnal mode once again. It's operation site cleaning time!
When I tried viewing my source code, I found a malicious script on my footer originating from this site:
http://indesignstudioinfo.com/ls.php
Not only that, all my files got infected too and a very long code was present on all my theme templates and plugins that looks like this at the beginning:
eval(base64
So what now? How can I delete these codes? I can manually delete them one by one but it'll take me forever! But I didn't gave up.. After almost 7 hours of research, I was almost ready to delete my entire database when I learned about godaddy's lifesaver feature.
"Restore"
What it does is it restores your files from a certain point of time.
So to cut the long story short, I just reverted everything back from May 6, 2010 back when my blog wasn't hacked yet. Voila! Everything was fixed! I was like, "Is that all you got hacker?! Noob!" Haha!
To find out more about that tutorial, click here.
I hope fellow godaddy users who got hacked can do the same thing I did to help you save a lot of time. This solved my problem for now. But I don't know if the hacker will attack again.
Were you hacked too? Share your experience.
2 comments
Its good to know godaddy has this feature. I was also hacked last month, It was a dreading story, bcoz I was hacked not just once, but twice.
The first time, I got my blog back in 8 hours, the second attack was a huge one just after 2 hours I had restored my blog. It took me 14 days to recover. I was getting 20 visits a day from google search which dropped to 5-6 now because of 14 day hacked website....
I dont understand what do hackers get out of doing all this
@Raj: Yes, it is indeed a real lifesaver! Wow.. It must have been a real pain the aXX.. I heard that there we're two strikes on hacking that happened. Luckily the one that got me was the second one so it was ok to revert to an earlier stage and I didn't have to worry if there is another one.
That's the main reason also why I tried fixing it asap is because I don't want to wait for SEOs to crawl my site and find malware on it as it would deeply hurt my rankings for that blog.
I guess this is a great way for hackers to showcase their skills. So targetting one of the biggest domain registrants (godaddy) made sense to them. Too bad they just use it to bad things such as hacking.
Post a Comment