sorry, looks like I put this in the wrong section of the forum.
Hi, I got a warning from avast for website…
6/15/2009 4:22:38 PM SYSTEM 1384 Sign of “JS:Redirector-B [Trj]” has been found in “.keystv.com/swfobject.js” file.
6/15/2009 4:23:54 PM SYSTEM 1384 Sign of “JS:Redirector-B [Trj]” has been found in “.keystv.com/swfobject.js” file.
The website said this is a false positive that happens with Avast. Are these particular warnings always false positives?
This is the contents of a supposed .js file, see image, this is no javascript file.
Presumably this is for a ShockWave Flash control, yet there is no call to a .swf file, nor is there any javascript code, so I don’t see what its purpose is or why it would be given a .js file type when it is plainly an HTML file.
Whilst that is a little suspicious, I don’t get any alert when visiting the hXXp://www.keystv.com/ page where there is a call to this file, see image2. So I can only assume that this file has been changed by the website.
Please ‘modify’ your post change the URL from http to hXXp or www to wXw, as in mine above to break the link and avoid accidental exposure to suspect sites, thanks.
Very strange that they would make a change that wasn’t necessary as that would prevent any investigation, to a) confirm the detection or b) if incorrect, modify the signature to prevent it happening again.
Call me suspicious, but I don’t see why they would change something which they consider not a problem.