|This article is an orphan, as no other articles link to it. Please introduce links to this page from ; try the Find link tool for suggestions. (December 2011)|
||This article provides insufficient context for those unfamiliar with the subject. (January 2014)|
There are different variants of malware that infect websites. Most of them use iframe HTML code, causing damage by injecting iframe tags into the website. Code may be injected into HTML, PHP, ASP or tpl source files. The virus may make its presence known by scanning for home page files such as index.php, index.html or default.html and inject the iframe code in them. The iframe code is usually found near the beginning on the web page. They may also infect through themes or templates of content management systems. The virus will also modify .htaccess and hosts files, and create images.php files in directories named 'images'. The infection is not a server-wide exploit, it will only infect sites on the server that it has passwords to.
This recent surge in compromised web servers has generated discussions in online forums and blogs. Web malware infections hurt businesses; Google, Firefox, Internet Explorer and anti-virus companies blacklist infected sites, businesses lose revenue and sites suffer damage to their brand and reputation.
An iframe virus is a type of badware. "Badware producers are constantly developing new, creative ways to install badware onto your computer". Badware distribution has been expanded beyond traditional channels like email viruses to harder-to-avoid methods like automated “drive-by downloads” that are launched by compromised web pages.