resolved

resolved

Make the infected link non-clickable by changing www to wXw

The site is infected

9/13/2009 3:58:08 AM SYSTEM 1840 Sign of "HTML:Illiframe [Trj]" has been found in "http://www.yesqube.com/(S(vmtrprizxmm4bxftoiyr53y0))/Index.aspx" file.  

It’s a common occurance right now but one posibility:
http://blog.avast.com/2009/06/03/gumblarcn-summary

Hi siv,

Your website has been hacked.

http://www.UnmaskParasites.com/security-report/?page=www.yesqube.com/(S(vmtrprizxmm4bxftoiyr53y0))/Index.aspx

Near the top of the page, just after the opening body tag, there is a hidden iframe linking to a malicious site.
The iframe also tries to avoid scanning by redrecting to port 8080, but this obviously doesn’t work, as avast! has cought it :slight_smile:


A very good post to read by DavidR:

-Scott-

The site is infected as spg SCOTT and YoKenny told you. I have just made the picture, so I’ll show you the infection too. Just look at the attached picture, it is shown using red arrows.

Regards

Hi,
thks a lot… will look into that and do corrective action

The main issue is not just removing the injected code but renoving the vulnerability that is being exploited.

This is commonly old content management software, PHP, SQL, Wordpress, etc. etc.

my website is crrupted by 0x0000054 try to resolve it

We can’t resolve problems on your web site.

Besides there is zero information to go on, like full details of the problem and a little thing like a URL, we can’t even guess what is wrong with your site.

File corruption isn’t something avast can fix, it is an anti-virus.

You should create a new topic of your own in the General forum (http://forum.avast.com/index.php?board=1.0) if this is not a virus detection/alert by avast and we will try to help if we can. However, we will need a lot more information.