Apr 09
21
Yesterday my antivirus (AVG 8.5) went craizy all day. After a while I found that HTML/Framer virus is a malicious code inserted in index.php, index.htm, index.html and all pages containing index in his name.
How can you get rid of it? First edit your index files and look for
<iframe src=”http://malicious adress” style=”visibility: hidden; display: none”></iframe>
where http://malicious adress usualy is a .nl adress.
Remove all iframe from your site (the ones you didnt put into pages) and anounce your hosting provider. Virus is on his server.
More info can be found here:
http://www.softpanorama.org/Malware/Malicious_web/malicious_iframe_attack.shtml
hi,
I m facing the same problem in all of my websites which i have access through ftp. all the index, main and home series files are virus effected with the iframe code inserted. i have tried to delete the code but after sometimes the code is getting back in the files again n again. i don’t know what to do, plz help.
I just found this line that has been added to our phpBB server index files:
The added site is: http://po___she.ru:8080/index.php
Here is the full source code line:
</
Will update when my host gets back to me on this. I’ve manually replaced all index files by hand for now.