SiteCheck Signatures

  1. Home
  2. SiteCheck Signatures
  3. malware-entry-mwgdd3



Code used to insert a malicious javascript on many sites hosted at GoDaddy (the latest round of attacks using is affecting more providers).

Loads the malware from:

Generally infecting all PHP files.

Clean up:

Run the following script:

Malware dump (base 64 added to the .php files):