New Avast User: Notified my site may have virus

Avast Free Antivirus / Premium Security
1

Hi Everyone,

So a friend of mine shared that when he went to my website (www.bayareavr.com)that his Avast showed a virus.

I was on another Virus protection software and thought I’d try the Avast free since I’ve read so many good things about Avast this past week.

I just went to my above site … and no warnings? Do any of you see anything different or have advice so I can see if there’s truly something there, or just a false positive?

Thanks!!

Eli

2

Report 2011-09-18 09:23:54 (GMT 1)
Website bayareavr.com
Domain Hash cb0b7e35897ef0011c79a817b07ee3c0
IP Address 98.129.229.52 [SCAN]
IP Hostname -
IP Country US (United States)
AS Number 33070
AS Name RMH-14 - Rackspace Hosting
Detections 0 / 23 (0 %)
Status CLEAN

Sucuri:
web site: hxxp://www.bayareavr.com/
status: Verified Clean
web trust: Not Blacklisted

3

No alert here either, had a rummage through the sight, looks very nice, but no alerts. So I don’t know what you friend found or the specific URL in the alert.

4

I really appreciate you two taking the time to check in for me. Here is a screen shot from my friends Avast program re: my site.

Thanks again!

5

OK, there have been a number of alerts on the jquery.js file in the viruses and worms forum as there have also been issues with exploits of wordpress, namely the themes and timthumb in particular.

I would suggest you ensure that you have the latest version of wordpress and replace the jquery.js file

If you have also use timthumb theme I would uninstall that and use another theme.

SEE:
http://www.elegantthemes.com/blog/theme-changesbug-fixes/timthumb-vulnerability-security-update
http://www.helloari.com/blog/2011/08/wordpress-vulnerability-security-timthumb-theme-script/
http://blog.sucuri.net/2011/08/timthumb-security-vulnerability-list-of-themes-including-it.html

6

VERY helpful David! My theme provider updated his latest theme with a timthumb update … I just installed his newest theme and am hopefully a bit safer. Thanks!

7

You’re welcome.

Although the theme has now been updated, I don’t know if that would also replace the jquery.js and l10n.js files in the wp-includes/js/jquery/ and wp-includes/js/ folders in your image.