Author Topic: Avast detects iframe-inf but I can't find it (Read 2332 times)

RodWeston · « **on:** August 28, 2009, 05:29:54 PM »

I am administering a blog at drkirklaman.com. When I try to access the site, Avast says there is an iframe-inf virus on the site. I have the complete site on my PC and the Avast scan does not reveal the virus.

DavidR · « **Reply #1 on:** August 28, 2009, 05:48:05 PM »

The contents of what is on your system is likely to be different if your site has been hacked.

The most common cause of hacking is out of date content management software that is vulnerable to exploit. So in your case ensure you have the latest version of WordPress.

It looks like the favico.ico file has been hacked and there is hidden iframe tag after the closing HTML tag a standards no, no, so highly suspect. The iframe tag tries to open a domain pretending to be google analytics but is fake (google-ana1yticz.com) and a malicious site (see report/show?name=google-ana1yticz.com also see http://www.google.com/search?q=google-ana1yticz.com).

So your site has been hacked and there may be other pages with hidden iframe tags.

If you have a custom 404 error page that and any template files, index.htm, etc. are also common targets.

Author Topic: Avast detects iframe-inf but I can't find it (Read 2332 times)

RodWeston

Avast detects iframe-inf but I can't find it

DavidR

Re: Avast detects iframe-inf but I can't find it