It looks like this is a genuine detection, there is an obfuscated script at the end of the page, outside of the html block that is causing avast! to alert.
I have a backup copy on a different computer. I’ll give that a shot.
I noticed that there is a “JS” folder on the web site that includes a lot of files with the same date as the page that has the infected script. I didn’t make any changes to the web site on that date. I may delete that folder as well.
Just a follow up. I had to get the developer of the web site to “scrub” the malicious script out of the web site. Godaddy.com was less than helpful. The Tech Support person with whom I spoke said there had been an incident (he originally used the word “outbreak” but immediately corrected himself and said it was contained quickly) where malicious code had been injected into some web sites Godaddy.com hosted. He said he was 100% certain that my site was not affected, but could not give any reason for his conclusion. In any event, the malicious script was present in the index.html file of every web site on my hosting account. Some of those sites had not been updated in more than three years. So I have no idea how the script may have been injected into my web sites. But they appear to be gone now. Thanks again for your assistance.
I am glad that you have managed to sort it out, and it seems to have worked. I can now browse the site without alerts.
That is what is done when sites are hacked…more often than not, many people only notice the one page, and miss the others…so they inject the code into all pages they can…
I would be questioning someone at GoDaddy as to why this so called ‘Tech Support’ person who was 100% sure that your site wasn’t infeted when in fact he was 100% wrong.
Hopefully events like this will prove to some people that even legitimate sites, with no malicous intentions at all can be hacked and be made malicous…overnight…
Kudos to you and the developer for investigating and your persistance
You only need to do a forum search on the viruses and worms sub forum for godaddy to see just how many infected/hacked sites were hosted at godaddy.
Whilst godaddy must have a huge number of hosted sites, what seems common in all such incidents, when reported is their support staff primary denial of a problem at all on their part at all. Even now they have admitted after you gave proof that there was an outbreak/incident, yet they still say they don’t believe it effected your site.
If that were my host that I was paying good money for I would be looking for another host that provided better support.