AntiVir Detecting HTML/Infected.WebPage.Gen Virus on WordPress

Guys, if you are seeing something like this when you visit this site:


It’s OK — It looks like AntiVir (among other antivirus companies) have decided to detect remote iFrame references in webpages as a “virus” — unfortunately WordPress (like this site) and many of the WordPress plugins make use of iFrames to work.

A lot of people are noticing this on all sorts of WordPress sites (More #1, More #2). We seem to have picked up this behavior right after updating to WordPress 2.8 so that might be what is going on here.

We are looking into this…

, , , ,

7 Responses to AntiVir Detecting HTML/Infected.WebPage.Gen Virus on WordPress

  1. Kipper June 29, 2009 at 3:19 am #

    Firefox is suddenly telling me this is a “reported attack site”… though I’ve never had any issues in the past …

    Avast pops up with a warning about blocking traffic from a malicious address or somethin as well …

    • Riyad Kalla June 30, 2009 at 8:50 am #


      Should be fixed now, had some plugin shenanigans going on. Manually cleaned everything out.

  2. Kaiz January 26, 2010 at 8:15 am #

    Hi. Any fix for this? I can no longer go to my dashboard because of this warning.

    • Riyad Kalla January 26, 2010 at 12:54 pm #


      In my case the warning was legit — the problem turned out to be hacked .php files on the server side that had external

  3. Nick February 9, 2010 at 7:17 pm #

    LOL, wordpress is nothing. Avira also detects it on (US Energy Information Administration) :)

    • Riyad Kalla February 9, 2010 at 10:25 pm #

      Oh man, did you check the source of the page and see if there was infact an injection attack? It’s typically an in the last part of the page before tag.

  4. Jesus February 29, 2012 at 10:29 pm #

    and hnesot ape: I agree, the Press This bookmarklet is a cool idea; I hope it delivers.@bardo: Since OpenID support is useful to only a handful of WP users, don’t you think that would be better implemented as a plugin?@Giovanni: How do you think custom fields could be improved?@Quick: Yes, it would be nice if the head WP developers did a thorough sweep of the Support forums to find and fix all pending bugs but then again, I suppose that’s what Trac is for.@JD Hartley: As for me, I vote for a drag-and-drop page reorderer! Also, there are already plugins that can republish an RSS feed into WordPress I’m not sure if it would be such a good idea to implement it into the core though, as it might encourage third-party content scraping.

Leave a Reply