Wordpress Blog with virus!

[howudoin]

I have a WP blog at page3pic.com but as soon as I get there, I'm alerted of a Trojan program virus namely Trojan-Clicker.HTML.IFrame.aqb

I have installed WP2.7 on this blog and I'm using Kaspersky Antivirus.

Any Help?
Thanks

[zoobie]

hmm do you own the server or your hosting own the server?
if you own your server, ask your tech to do a search and if if they can locate this file.
And if it belongs to your host ask them to run a file checker. Then remove that little file from your host.

Hopes that help

[howudoin]

I have a Baby hosting account with hostgator. Is there anything I can do on my end other than contacting the Support center?

Bhupinder

[Craig Desorcy]

Contact your host and have them roll back your blog to the last backup
but before that change all passwords and user names. (Blog and hosting)

Do not login to your blog via FTP until you know for sure there are no
key loggers installed on your computer because if there is, they'll get
back in.

I would only use SFTP btw. It cost ten bucks for host gator to set it up
then you use
WinSCP :: Free SFTP and FTP client for Windows

After that, pick up a program to protect your blog or research by
Searching this forum.

Craig

[Vince N]

I had one of my sites hacked and de-indexed from google, I have abandoned the blog now.

Of course I do not recommend the same recourse, try and speak to the tech guys. If they can do something about it, try and get things done as fast as possible.

[Jason Johns]

Hi there,

Make sure you really scan your computer. Download Adaware and scan your computer and download spybot too and give it a good scan just be on the safe side.

I'd also recommend installing one of the Wordpress backup plugins and getting it to take regular backups of your website in case things like this happen.

You could go in via FTP or CPANEL and look for the file yourself and try to download it. Spammers are getting everywhere these days - just found one of those varmints installed some email software and was spamming from my domain!

Good luck with it

Jason

[WendellC]

Hi.

I've recently had some WP virus problems too so I know what it feels like...

For this iFrame virus, it MAY be the case that your PC got the virus rather just your site getting hacked via a security weakness.

So I would first suggest scanning your own PC to make sure that is not the source of the original virus. One variant of the iFrame virus is designed to monitor your FTP session so it can then upload itself into your other sites.

I hear AVG can detect the virus on your PC so you may want to try that.

http://free.avg.com/

I would also scan your PC with Malwarebytes AntiMalware, just for good measure.

http://www.malwarebytes.org/mbam.php

Once you've determined that your PC is clean, you should back up your WP database files. I don't believe the iFrame virus affects your mySQL files although it would still be a good idea to back them up anyway.

After your files are backed up, you can re-upload the WP PHP files for your version. If you don't have the original WP PHP files, you can find them here:

http://wordpress.org/download/release-archive

I believe the iFrame virus typically only affects the index.php and possible any index.htm or index.html files. However, I would probably re-upload all the other WP installation files, just in case.

Hope this helps.

Wendell