Iframe keeps showing up

Hi,

About every two days, I get a warning from Avast that HTML:Iframe.inf has been detected on HTTP:/www.rparts.com/favicon.ico

This message appears when Internet explorer is first started, or Firefox is first started. I have no idea what it is trying to tell me, as I can’t find any of these on my computer.

Would you have any idea what I need to do about this?

Thanks
Wayne

This is a detection by Avasts’ webshield. It has prevented the exploit from transferring to your computer.
What to do?
Notify the site owner/webmaster. It is an exploit that has been actually loaded into the site, only the website owner can remove it.
If it starts every time you open your browser, it indicates that this site is your homepage. Maybe you should change that until it’s fixed.
[edit] Another thing to do is to clear/clean your temporary internet files.

Hi pipedoctor,

Yes this site has this hidden IFrame link:

DO NOT CLICK ON THE LINK provided by polonus. It is an infected site! I found out the hard way.

The problem arises because the script has been included in the blog discussion about the problem of his infected site, that is effectively a virus signature avast will detect it.

Unfortunately the idiot didn’t think that in fully publishing the code without breaking it up one to two or three chunks it would be detected by a) the AV that he used and in this case avast and b) any of the few (avast) AVs that can actually detect this.

Hi folks,

Deleted it asap,

pol

So, what is on my computer that keeps trying to direct me to this web site?

I have ran every scan I can think of, searched for the file names, nothing comes up. I have deleted Firefox and Internet explorer, and re-installed them, deleted all of my history, emptied the recycle bin. Something is telling my browser to go to this web site, but Avast keeps finding the virus and stops it from acting.

Thanks
Wayne

Ah, sounds like a browser hijack.
Do you have the program “HijackThis”, by TrendMicro?
What other scans have you run to find it?


Welcome to the forums, Georgie777. :slight_smile:

Why would you click on it since Polonus had already confirmed in the same post that there was malware at the link? ???

I do not understand why you would do such a thing. What were you thinking? ???


Since you don’t actually mention what scans you have run, we risk repeating what you might have tried, however, try these.
If you haven’t already got this software (freeware), download, install, update and run it and report the findings (it should product a log file).

Greetings,
Well, I used the Super Anti Spyware program, and it found the problem. It was a cookie that was trying to hijack my computer. But the cookie was not in the regular cookie folder! The free version did such a good job, I think I will purchase the full program.

Previously I had used MalwareBytes, Dr. Webcure, AML Registry Cleaner, and a couple others that I can’t remember. Non of them found anything. So, it was Avast that was doing its job properly, and keeping my computer from being ruined.

Thanks to all that replied, I really appreciate it!!!

Wayne

You’re welcome.

Though I highly doubt this was all down to just a cookie as they are just text files (all cookies should by protocols should be stored in the browser cookie folder) and a very minor issue and certainly not a security one. Being text files they can’t execute so would require something else to extract what data was in the cookie to use it and presumable that wasn’t found.

So this file must have been something else, which is why I suggested posting the logs of the scans.