Malware Related > Compromised Servers

webaliser.net iframe?

(1/1)

magcube:
Hello,

I found this site after trying to research a strange iframe code that has been inserted into some of my site's pages calling the domain webaliser.net in an iframe.

Does anyone know what exactly this does and how can I tell if I have it completely off of my server?   Is it just a matter of removing the iframe code from the compromised pages?  I can't seem to find any other infected files.


Thanks!

MysteryFCM:
This particular one doesn't seem to do anything as bad as the gumblar/martuz one floating about, but I'd still recommend doing a complete restoration of the site from backup if possible as what I can find, indicates it modifies both the files, and the database.

Aswell of course, as changing any FTP/cPanel etc etc passwords.

Navigation

[0] Message Index