Thread: Warning: Iframe based attacks using stolen FTP access info
View Single Post
  #115  
Old 10-24-2008, 08:55 AM
  bigredseo's Avatar 
bigredseo bigredseo is offline
 

X-Man
   
Join Date: Oct 2002
Location: Omaha, NE, USA
Posts: 2,364
 
Default Re: Warning: Iframe based attacks using stolen FTP access info
We have also found ONE file with the "main.php" being compromised.

Basically any file with the following words are the likely targets:

INDEX, DEFAULT, MAIN

We've seen the following:
index.htm, index.html, index.php
default.html, default.html, default.php
modifier.default.php
main.php

If you are unable to find the files yourself, please contact your host and provide them the search commands as posted in post 64 here on the forums. They should be able to scan your site for any references to IFRAME and live-counter.
__________________
Conor Treacy - Big Red SEO - @bigredseo
Search Engine Optimization & Internet Marketing - We Bring Your Website Out Of Hiding!
If you can't be found on Google, Bing or Yahoo, you pretty much don't exist on the Internet.
Omaha SEO Office with National & Local SEO Services
Hourly Consulting - great for SEO Disaster Recovery, Audits and DIY Guidance
Reply With Quote