: Your site currently has some malicious Javascript embedded in the bottom of your site that embeds an iframe in your page. This could infect visitors with malware, attempt to steal their passwords,

Your site currently has some malicious Javascript embedded in the bottom of your site that embeds an iframe in your page. This could infect visitors with malware, attempt to steal their passwords, or do all sorts of other nasty things.

There are a couple of steps you can take to remedy this problem.

Reinstall the latest version of WordPress

It's very important that you keep up to date with any web applications you're using on your web site. Older versions can contain security vulnerabilities that can be used to infect your page with foreign code or content.

Since it looks like your site is using WordPress, I'd recommend reinstalling the latest version and starting from a clean slate. You may lose any previous posts and/or comments, but you also don't want to carry along any of the infection with the previous content.

If you'd like to keep your current post, I would recommend copying them into a text file first, and them pasting them into the new installation as new entries. This way, you can make sure that no residual code is present.

Change your FTP Password

Often, attackers can get in to your web site if you have a weak FTP password. Additionally, if you don't use sFTP, your password is sent in clear text across the Internet and can be intercepted.

Using a strong password (more than eight characters, mixed with numbers and symbols, without any common words) and connecting through secure channels can help prevent this.

Clean out any unfamiliar files

Make sure to check your web root for any files you don't recognize. If your account has been compromised, attackers may leave a backdoor script as a method of re-compromising your site.

Check for any files with odd modification times - times that you wouldn't have uploaded files to your web site, for instance.

Consider changing hosting providers

If you're already following good security precautions, then you might not be at fault. If FreeHostia is running server software that contains a vulnerability, or they don't follow security practices themselves, there is nothing you can do to secure your web site. Make sure to host your web site with a reputable host.