Comments on: Iframe code injection

By: Amos Kofahl

Amos Kofahl — Mon, 12 Apr 2010 16:46:39 +0000

I’m a huge fan of this website and I read it regularly. Keep up the good work!

By: Free Anti-Virus Download

Free Anti-Virus Download — Mon, 22 Feb 2010 10:40:09 +0000

I seriously enjoyed reading through this specific post. I am going to be coming back in order to read even more fascinating opinions. With thanks.

By: Cohesive Web » Blog Archive » Web site hacked via HTACCESS

Cohesive Web » Blog Archive » Web site hacked via HTACCESS — Mon, 09 Nov 2009 13:17:05 +0000

[...] your site using Google Diagonestic tool for safe browsing mentioned in my earlier post – Iframe code injection. In this kind of attack none of your web pages get infected but your .htaccess file gets modified [...]

By: Robert Mann

Robert Mann — Thu, 05 Nov 2009 21:51:55 +0000

I never would have thought of that

By: Susenjit

Susenjit — Wed, 26 Aug 2009 12:23:11 +0000

I am not sure about how they get access of ftp details but there may be possibilities. The trojan [HTML:Iframe-inf] either access the file where the ftp application stores ftp access details of different site or they hack these information at the time when we type them while connesting via ftp application.

Since I am using avast free edition(version 4.8) it aborts the connection while opening a webpage with iframe. Also it detects the malware download.

By: Sunny

Sunny — Sun, 23 Aug 2009 11:23:29 +0000

Superb , Thanks Susenjit.. Any idea how they get access to our ftp ? Is this any trojan or spam … do you recommend any tool or anti-virus to stay away from this ?

Your help solution is outstanding.

By: Sunny

Sunny — Sun, 23 Aug 2009 11:21:26 +0000

Superb , Thanks Susenjit.. Any idea how they get access to our ftp ?

By: Susenjit

Susenjit — Thu, 20 Aug 2009 08:22:36 +0000

I am really sorry for the mistake. the function list_dir() should be changed with navigate(). I have already made that correction. You can correct your code as:
On line 22
list_dir($handle, $dir, $WebRef);
replace with -
navigate($handle, $dir, $WebRef);

Thanks for pointing out such a crusial mistake.

By: Sunny

Sunny — Mon, 17 Aug 2009 07:15:53 +0000

All credits to you – same problem happened to me too… & now I am exhausted. I uploaded your file at my root dir

but its giving error

Checking files for IFRAME Infection
Directory Structure of http://www.ampiflow.com/

Fatal error: Call to undefined function list_dir() in /home/lena9164/public_html/remove.php on line 22

http://www.ampiflow.com/remove.php here is file,

Could you please suggest what could be prob ?

Many Many thanks n advance

By: Yogesh Goel

Yogesh Goel — Sun, 09 Aug 2009 08:15:14 +0000

Hi,

Have added to my blog

http://www.ygoel.com/

the write-up & all the photographs of the Kolkata Bloggers Meet 2009.

Do take some time to visit and do not forget to put down your inputs for the same.

Regards & Love,
Yours ever in blogging,

Yogesh Goel
ygoel.com