bitstop thanks the patience of our webhosted clients who were affected by a mysterious flaw in their websites, whereby all visitors are made to enter their authentication. It took our team a long time to track it down. From what we have so far. The vulnerability is traced to Mailenable software. This allows a virus to propagate into the servers and install rootkits and backdoors into the affected servers. The indicators of the attack are files named rdriv.sys and config.exe sometimes with a.exe and several sdbot variants. This is serious, and we will strive our best to get the websites back up.
We are still working on this issue as of this writing. More details will follow.
Here is a link on how to remove it: http://www.trendmicro-middleeast.com/consumer/vinfo/encyclopedia.php?LYstr=VMAINDATA&vNav=2&VName=TROJ_ROOTKIT.E