False alert in www.unlock-all-gsm.com

Avast Free Antivirus / Premium Security
1

Hi
I’m the owner of www.unlock-all-gsm.com, when i use AVST it says that there is a virus ( .js )
That’s not TRUE, because it’s a java script file,

So please Try to correct this error i’m loosing too much customers because of that.

Best Regards

2

I don’t think it’s a false alarm.
What’s that encrypted javascript appended to the end of the page?

3

Please Try my web site,
I have the coffee cup formbuilder wich uses .js file and swf and the animation ( flash + js ) with Banner Zest

So please Help me

4

Microsoft Security Essentials is also finding a problem, It finds Trojan:JS/Redirector.BQ. when I go to your site.

Your site may have been hacked.

5

Oh my Godness !!!

WHAT CAN I DO ?

6

Every 3.6 seconds a website is infected
http://www.scmagazineus.com/every-36-seconds-a-website-is-infected/article/140414/

7

http://stopbadware.org/home/security

Thanks
nmb

8

Can somebody tell me what are the files infected to remove them please, because i’m working on Mac osx PLEASE

Thanks

9

I don’t know if this will help, But MSE shows a list of files that tried to download.

10

Hi
Thanks for your help,
But, if i remove bzloader.js my animation w’ll not work, the same thing for the Spry file ???

Really i need your help peaple :cry:

11

Can Someone go to my website to check if it’s infected yet ??? becose i installed on my mac parallel desktop with Win XP and AVAST, i intered to www.unlock-all-gsm.com but no Alerts … ::slight_smile:
Please visit it and tell me thanks :slight_smile:

12

Hello,

You can check here : http://www.UnmaskParasites.com/security-report/?page=www.unlock-all-gsm.com

Thanks
nmb

13

Thanks i’ll Check it out :wink:

14

p.s. It’s losing with one ‘o’, not loosing.

15

Thanks for the correction :slight_smile:

16

When i type www.unlock-all-gsm.com
there is no alert, only in the FAQ page and the blog http://blog.unlock-all-gsm.com
I Think that i downloaded a plugin for wordpress ( Blog ) is the cause ???

Help please

17

Still detecting it

18

Thank you, it detects a virus at www.unlock-all-gsm.com ??? or where, because mine doesn’t detect any think on www.unlock-all-gsm.com exept www.unlock-all-gsm.com/faq.html

Thanks again

19

There is an obfuscated script tag after the closing HTML tag (in the blog index page) a standards no, no, aside from it being highly suspicious, see image.

There are a few other scanners that detect this, don’t be fooled by the low number of detections as many doen’t even look for this much less detect it.
See http://www.virustotal.com/analisis/af1f3d9474347178316aa95dcb8c680b28e630f136c765b466e4086eb7c5ebf4-1264529114.

Please ‘modify’ your post change the URL from http to hXXp or www to wXw, to break the link and avoid accidental exposure to suspect sites, thanks.

20

I smell a troll.

Edit:
Changed URL’s to be void as per DavidR’s Suggestion