HTML/IFrame.NKE!tr

description-logoAnalysis


This detection is for HTML files that contain a hidden IFrame tag to redirect the web browser to suspicious sites, such as the following:

  • http://{Removed}opik.com/red1
  • http://{Removed}ernen.de/ofertas/home_1.php
  • http://www.{Removed}egrada.com/web/wp-includes/images/smilies/cgi/index.php

recommended-action-logoRecommended Action

    FortiGate Systems
  • Check the main screen using the web interface for your FortiGate unit to ensure that the latest AV/NIDS database has been downloaded and installed on your system - if required, enable the "Allow Push Update" option.
    FortiClient Systems
  • Quarantine/delete files that are detected and replace infected files with clean backup copies.

Telemetry logoTelemetry

Detection Availability

FortiClient
Extreme
FortiMail
Extreme
FortiSandbox
Extreme
FortiWeb
Extreme
Web Application Firewall
Extreme
FortiIsolator
Extreme
FortiDeceptor
Extreme
FortiEDR

Version Updates

Date Version Detail
2022-12-27 90.09105
2022-09-26 90.06340
2021-08-17 88.00437
2019-07-24 70.22200 Sig Added
2019-05-28 68.84900 Sig Updated