avast blocks joomla web-site because of "JS:HideMe-H"

Hi everyone,
Today, avast started to block my website because of JS:HideMe-H
However, I did not found any ‘hideMe’ in all website content.

Online checked does not show anything:

http://sitecheck.sucuri.net/results/protexis.ru

Previously, avast blocked my site because of vulnerable code in slideshow module.
But website was not hacked, this is just some new vulnerability Avast discovered.
But previously http://sitecheck.sucuri.net showed up that I do have such problem.
Well I fixed it.

Why this time Avast discovered something and no chance to find where?
Kaspersky or Comodo does not see anything.

Thank you in advance for any advice,
ps: Avast is new, Windows is new.

http://zulu.zscaler.com/submission/show/24a7264d846afeb7c18a94b2ef9bed7f-1378034943

a screenshot of avast popup would help ?

Today, avast started to block my website because of [b]JS:HideMe-H[/b]
http://blog.sucuri.net/2013/07/hidemebetter-spam-injection-variant.html

it does not show the code issue. Just points to the location, IP address and etc.
But thank you anyway.

You’re welcome.

Like I said, there is nothing “HideMe”-related in the whole content. Just checked it.
Also, this site has a link to sucuri online checker which return “success” on my website.

Any ideas from Avast where to look in the code?

As said above … A screenshot of avast popup may help…

This is the problem and it does show on Zscaler http://joomlaboy.com/tutorials/joomla/88-solved-autson-slideshow-clickjack-issue

well, that is genius.
last time this shitty module has been detected by sucuri and detailed info told that such part
t=‘’;}}x[l-a]=z;}document.write(‘<’+x[0]+’ ‘+x[4]+’>.‘+x[2]+’{‘+x[1]+’}</‘+x[0]+’>');}dnnViewState();
is valnurable

therefore I change id to t=z=‘’;
now history showing us that Avast does not like Autson Slideshow at all.

much appreciate for help. looks like Avast keep silence, for now.

Is all well now ?

Yes, everything is perfect, thank you

Good moring. I also have the same problem (this is the site www dot anteasverona dot it) but I did not install the module you’ve reported to be the problem.
What else could it be?