Most Popular: IFrame hacks
We have seen an increase in the number of customers with the "IFrame Hack" hacked websites. This is not just related to our customers. This is a growing problem around the globe, for all hosting companies.

The "IFrame Hack" involves the hacker "injecting" some malicious code into your site (normally on all your "index" pages) in the form of a hidden IFRAME, which then tries to infect any vistors to your website with various viruses and trojans etc. Oftentimes you may not even realize your site is hacked until Google detects the hack, and starts displaying "this site may harm your computer" in it's search listings that reference your domain.

Check to see if you have you been hacked:

Use this online tool to detect if you have been hacked with the "Iframe hack".
(Note that this is a 3rd party site, unrelated to

How did the hack occur?

In most cases, the hacker has simply obtained your FTP login details. This allows them to add the extra code to your pages at will. FTP details are illegally obtained in a variety of ways. However, the general understanding is that this occurs mainly by the your own PC being infected by one or more trojan viruses. These trojan viruses retrieve your FTP details straight from your FTP application of choice.

So... How do I clean my site of the "IFrame Hack"?

First, you should change your FTP password. You can do this via your hosting control panel. Make sure you use a "strong" password. A "strong" password utilizes a mixture of letters, numbers, symbols, and a mix of lower and uppercase. Next, upload a "clean" backup of your site to the server, overwriting all your files. Lastly, make sure you do NOT store your FTP details anywhere on your computer. For example, do NOT store the FTP password in your FTP application (ie, CuteFTP, Filezilla , etc) or Website Editors or Content Management Systems (ie, Dreamweaver). Always make sure you have to manually enter your FTP password every time.

NOTE: If you do not have a backup of your site, we can restore a copy for you. If you do not have a backup of your site, we suggest you get a backup of it too once we have restored the files, so that you always have a good copy too.

Additional steps to help with your security

Now you should make sure your computer is free of viruses, trojans and keyloggers. Make sure your anti-virus software, and your firewall software is up to date and working properly. Then run a full system scan. It is recommened to set a regular schedule scan for your system. Generally the software defaults are a great starting point.

You may also want to check out the Malwarebytes Anti-Malware application. It has been noted that this application can find and remove viruses, trojan, etc. that some anti-virus programs miss.

If you try this, be sure to first get the latest update of the product before running the Quick Scan and allowing it to remove any malware found. After running the Quick Scan, you will probably want to run the Full Scan to get a complete scan of your system.