About every two days, I get a warning from Avast that HTML:Iframe.inf has been detected on HTTP:/www.rparts.com/favicon.ico
This message appears when Internet explorer is first started, or Firefox is first started. I have no idea what it is trying to tell me, as I can’t find any of these on my computer.
Would you have any idea what I need to do about this?
This is a detection by Avasts’ webshield. It has prevented the exploit from transferring to your computer.
What to do?
Notify the site owner/webmaster. It is an exploit that has been actually loaded into the site, only the website owner can remove it.
If it starts every time you open your browser, it indicates that this site is your homepage. Maybe you should change that until it’s fixed.
[edit] Another thing to do is to clear/clean your temporary internet files.
The problem arises because the script has been included in the blog discussion about the problem of his infected site, that is effectively a virus signature avast will detect it.
Unfortunately the idiot didn’t think that in fully publishing the code without breaking it up one to two or three chunks it would be detected by a) the AV that he used and in this case avast and b) any of the few (avast) AVs that can actually detect this.
So, what is on my computer that keeps trying to direct me to this web site?
I have ran every scan I can think of, searched for the file names, nothing comes up. I have deleted Firefox and Internet explorer, and re-installed them, deleted all of my history, emptied the recycle bin. Something is telling my browser to go to this web site, but Avast keeps finding the virus and stops it from acting.
Since you don’t actually mention what scans you have run, we risk repeating what you might have tried, however, try these.
If you haven’t already got this software (freeware), download, install, update and run it and report the findings (it should product a log file).
MalwareBytes Anti-Malware, On-Demand only in free version http://download.bleepingcomputer.com/malwarebytes/mbam-setup.exe, right click on the link and select Save As or Save File (As depending on your browser), save it to a location where you can find it easily later. - 2. SUPERantispyware On-Demand only in free version.
Greetings,
Well, I used the Super Anti Spyware program, and it found the problem. It was a cookie that was trying to hijack my computer. But the cookie was not in the regular cookie folder! The free version did such a good job, I think I will purchase the full program.
Previously I had used MalwareBytes, Dr. Webcure, AML Registry Cleaner, and a couple others that I can’t remember. Non of them found anything. So, it was Avast that was doing its job properly, and keeping my computer from being ruined.
Thanks to all that replied, I really appreciate it!!!
Though I highly doubt this was all down to just a cookie as they are just text files (all cookies should by protocols should be stored in the browser cookie folder) and a very minor issue and certainly not a security one. Being text files they can’t execute so would require something else to extract what data was in the cookie to use it and presumable that wasn’t found.
So this file must have been something else, which is why I suggested posting the logs of the scans.