Author Topic: Broken path in HTML, Avast! reports HTML:IFrame-EZ [Trj]  (Read 7302 times)

0 Members and 1 Guest are viewing this topic.

stonefire

  • Guest
Broken path in HTML, Avast! reports HTML:IFrame-EZ [Trj]
« on: May 28, 2009, 01:49:31 PM »
Hello everyone.
I've ran into an interesting problem yesterday. While browsing (Firefox 3.0.10), Avast! reported trojan HTML:IFrame-EZ [Trj] in favicon.ico and a couple GIF files (linked to the HTML through litebox.js). It didn't happen until then. The problem is that these files never existed in a location Avast! reports. After a while I tried to upload files with the same names onto the said locations and no virus reported since then. Maybe I missed something, but it seems like Avast! caught HTML page asking for picture files that are not found due to the broken paths (I realized that later) and reported it as a trojan.

Can anyone please confirm this can happen due to the broken paths or is there something else into it?
Thanks in advance.

Offline jsejtko

  • Avast team
  • Full Member
  • *
  • Posts: 171
    • ALWIL Software
Re: Broken path in HTML, Avast! reports HTML:IFrame-EZ [Trj]
« Reply #1 on: May 28, 2009, 02:02:15 PM »
Hello,

The files doesnt exist for the server so it generates 404 message -> try to check server generated messages, there is probably infection located.

Regards

stonefire

  • Guest
Re: Broken path in HTML, Avast! reports HTML:IFrame-EZ [Trj]
« Reply #2 on: May 28, 2009, 02:10:06 PM »
That's it. Error messages are infected. Thank you very much for clarifying!

Offline jsejtko

  • Avast team
  • Full Member
  • *
  • Posts: 171
    • ALWIL Software
Re: Broken path in HTML, Avast! reports HTML:IFrame-EZ [Trj]
« Reply #3 on: May 28, 2009, 02:14:54 PM »
You are welcome :)