Remove IFrame Virus

May 22, 2009

I’ve recently tried to remove the IFrame virus and it’s been a nightmare. There are some things I’ve done in the past few days that I think fixed the problem and I would like to tell you about them so you’re not GOOGLING for hours like I did looking for a solution. So here it is…

First of all, if you’re website has the iframe virus, then I suggest you get your computer cleaned free of any virus… To tell you the truth, why not just wipe out the entire computer with your Windows disc and start all over? That’s what I did…

If you’re using FileZilla, then make sure you are using SFTP instead of just FTP. I am not doing that right now because I didn’t learn how to do it, but I’ll get back to you on that in a day or two… I know that SFTP encrypts your information and FTP uses plain text.

So here are some steps to take…

  1. Clean Computer
  2. Change FTP password
  3. Log into your site and pull down every .HTML, .ASPX, .PHP, and .JS file
  4. Open each file, one at a time and search for javascript code above the <body> tags (that you didn’t write. don’t delete something you need and come blame me) and delete it. Delete the <iframe> code just below the <body> tags. Make sure this code isn’t near the </body> tag as well. In each PHP and .JS file, check for code (that you didn’t write) at the top and bottom of the file and delete it.
  5. Search for two files, gifimage.php and image.php, in your images folders and delete them.
  6. Don’t give the new FTP information to someone who might have a virus.
  7. Pray a little bit. If you’re not religious, then just talk to yourself a little bit.
  8. Make sure you fixed every file.

Posted by bombtrk
Filed in Security
Tagged: , ,
Leave a Comment »