Announcement

Collapse
No announcement yet.

HTML:Illiframe-C [Trj]

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • HTML:Illiframe-C [Trj]

    Hi

    Does anyone know how to deal HTML:Illiframe-C [Trj] ? It keeps polluting the files of many sites on all c panel servers i got (and not at all at plesk servers) and changes my files continuously .
    I will appreciate any help

    warm regards,
    athan

  • #2
    Have you cleaned all the malscripts from the sites?

    Scan all php files for a string that starts with:

    <?php eval(base64_decode

    Then a series of upper and lower case characters. The php above might be upper or lower case and there might be an extra space or two between php and eval. There are many other scripts that hackers use to remotely infect websites after they've gained FTP access.

    Please let me know what you find by posting back here.
    Thomas J. Raef
    "We Watch Your Website - so you don't have to!"

    Comment


    • #3
      Originally posted by WeWatch View Post
      Have you cleaned all the malscripts from the sites?

      Scan all php files for a string that starts with:

      <?php eval(base64_decode

      Then a series of upper and lower case characters. The php above might be upper or lower case and there might be an extra space or two between php and eval. There are many other scripts that hackers use to remotely infect websites after they've gained FTP access.

      Please let me know what you find by posting back here.
      These can be controlled/avoided by disabling the PHP functions
      Rock _a.k.a._ Jack Daniel

      Follow eUKhost on Twitter || Join eUKhost Community on Facebook

      Comment

      Working...
      X