When I initially tested that URL after applying my fix Avast did warn me of the HTML:Iframe-inf infection in that particular URL.

Since then I have been back and retested the URL again and Avast now reports nothing.

But a scan of a copy of the same URL in the Virus Chest still shows HTML:Iframe-inf infection.

Go figure that one.

I expect that there maybe some work going on behind the scenes that we are not privy to.

I know that I forwarded the suspect URLs to the virus lab at Avast and also to Kickass so maybe one of the two have come up with a fix and hence the URL is no longer being detected as a threat.

The question remains was Avast detecting false positives after detecting the initial infection ?

I believe Avast was somehow corrupted by one file that contained this HTML:Iframe-inf beasty and then Avast continued to keep reporting false positives for every page or action on only on the Kickass site.

It is interesting that Malwarebytes is now detecting the same problem on the Kickass site.

Thunder Bird.