Hi Bima,
I would suggest that it is more than likely a genuine detection as avast! is usually quite accurate in this respect. Detection of hidden scripts is one of (if not the) strong points of avast!
Also, facebook is somewhere that people would target for this sort of thing...
Scott