McAffee has the original site now as a redirect to 114china.com which they have checked as green or safe. So to sum up, the ebeded I-fram is or was connected to a Trojan malicious site that is no longer active. So ther is no danger with the I-frame anylonger.
Had it been active, my system would have jumped on it before it opened, but it was dead. So the only irritation is for those malware detectors that compare code against a long list of known codes active or inactive. That is what security essentials does as well as many other stand alone usually free code scanners..
So if you all run into this again, your scanner is doing what it is supposed to do. had it been still active, mine would have popped off as well.
Hope that helps settle the differences in scans...
I looked at the image in an editor and it is using an iframe injection.
It’s linking to
ad.yieldmanager.com/st?ad_type=iframe&ad_size=728x90§ion=183491
The virus scanner is hitting on it, not because of the site the iframe is linking to, but because of the fact that there is an Iframe in an image file in the first place. That is a no no. It tricks the browser into loading a webpage without you knowing about it. It’s basically a simple Trojan.