One of my websites is being blocked by Avast (http :// eisabainyo.net/) Could it be a false positive? Can anyone have a look at it and let me know because I have looked at the source code and there’s no iframe injection except for google ads with iframe code.
Generator: WordPress 2.7.1 - Warning: Old version of WordPress. It may be vulnerable. Please upgrade.
What happened when Google visited this site?
Of the 3 pages we tested on the site over the past 90 days, 0 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2009-09-17, and the last time suspicious content was found on this site was on 2009-08-28.
Malicious software includes 39 exploit(s).
This site was hosted on 1 network(s) including AS31727 (NODE4).
Has this site hosted malware?
Yes, this site has hosted malicious software over the past 90 days. It infected 2 domain(s), including filmizlemek.org/, ytporn.com/.
Have you had a recent infection on the site, that is usually how these things get added ?
However, having bypassed the network shield I get no alert by the web shield, but I found this page, hXXp://eisabainyo.net/weblog/2009/04/06/iframe-injection-attack/ (note how the link is broken with the hXXP) now in the example on that page (see image) it may be what caused this I don’t really know, but it may be better to use an image to show the example rather than the text you have.
That said you can send an email to virus (at) avast (dot) com, with a link to this topic might help and false positive - network shield in the subject.
Thanks for your explanation, DavidR. I did have an iframe injection attack a few months ago but I had removed all the affected files and restored the clean version.
I’ll contact Avast to see if they could remove the domain from the malicious websites list.