1. Home
  2. Forums Index
  3. WebmasterWorld / Webmaster General 2:31 pm May 21, 2026

Forum Moderators: phranque

Message Too Old, No Replies

Another website showing my site in an iframe, and contagious w/malware

Seeking advice on how to handle this

         

john5000

5:47 am on Apr 26, 2010 (gmt 0)

10+ Year Member



The following paraphrased email pretty much explains the situation:


-------------------------------
Hi,

Your website example.com contains a script that infected my computer with malware this evening.

I was viewing my visitor logs for my site and noticed that one visitor had arrived at my site from the following link:

example.com/mydomain.htm (I suggest not clicking that link because that is how my computer became infected).

Immediately upon clicking that link myself, multiple pop-ups appeared on my computer screen. The pop-ups wanted me to purchase some anti-virus software but I did not click on them. Also, basic functions of my computer suddenly became disabled. For example, I was unable to open up my malware-scanning programs such as Avast, AVG, CCleaner, and Spybot S&D.

The malware also disabled the ability to perform holding down ctrl-alt-dlt in order to view all the processes running on my computer.

In addition Internet Explorer browser suddenly popped up with several tabs containing adult-themed websites.

I am using another computer to write this email to you, as I will probably be busy for several days to clean my infected computer.

I noticed that example.com is using a script that shows various websites (Mysite, SomeOtherSite, etc) inside an iframe on the example.com domain name. I believe this may be the script that caused my computer to become infected.

Can you please remove that script and see if there is anything else going on with example.com that could be causing malware to be downloaded onto the computers of visitors to your website?

And please let me know if I can help any further.

Thanks,

-------------------------------------


Can I implement an iframe-blocker/breaker of some sort? What is best way to do that?

I don't want people to be visiting my website through his iframe on his domain, and then being infected with malware and associating my website with the malware attack.

This webmaster has responded to me saying he has taken care of the problem and he hopes there is not any "issue" between us. And he was not very specific with what actions he took. I don't want to revisit his website to confirm.

This person seems rather unfriendly as I noticed several months ago that he owns the .net of the name of a popular .com in our niche. And he redirects visitors to the .net to his own website.

Part of me wants nothing to do with this person. But another part of me wants to help him to act in a more courteous manner. His website is a relatively high-traffic community site in our share niche.

Any suggestions on how to proceed?

bill

6:31 am on Apr 26, 2010 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member Top Contributors Of The Month



Do a search on WebmasterWorld for a javascript frame breaker. There are a number of threads referencing such scripts.

john5000

10:35 am on Apr 26, 2010 (gmt 0)

10+ Year Member



thanks bill!

htmlbasictutor

8:54 pm on May 3, 2010 (gmt 0)

10+ Year Member



In the head section add: 
<script type="text/javascript">
<!--
 if (parent.frames.length) top.location.href= document.location;
-->
</script>

This will break out of frames.

encyclo

9:06 pm on May 3, 2010 (gmt 0)
 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

  1. Home
  2. Forums Index
  3. WebmasterWorld / Webmaster General 2:31 pm May 21, 2026