Is this site really infected ?

Avast! warned me about hxxp://avaload.ru/ .And maybe I have to agree. The script in the bottom of source looks suspicious. But only 3 AV detect this script. Is this FP or not?

What other scanners (from virustotal) ?

There are very few AVs even looking for these type of things much less detect them.

Also see http://www.UnmaskParasites.com/security-report/?page=avaload.ru, so it looks like the site has been hacked.

yes, the site definitely has some problems. Nice catch on the obfuscated JS; it leads to hxxp://click-poisk.com/there/in.cgi?7, which apparently does a long series of redirects, culminating in hxxp://googleinru.in/cgi-bin/etc, which contains more obfuscated JS. I’m still trying to break through that last JS; I’ll post here if/when I get through it.

GData(with Avast! bases) and NOD32.
Thanks for your help,guys :slight_smile:

You’re welcome, but you helped yourself in realising that the script was suspect.