Virus on Bolt.cd web page

[reuven]

I can no longer go to the Bolt.cd web page. Avast is stopping it with message virus HTML SCRIPT-inf found. I do not know if this virus has been reported to Bolt.cd. Why does not Avast destroy this virus? If nothing is done, I will have to disable Avast on web pages.
       Please help,
         reuven

[mikaelrask]

Hey according the virustotal scan it should be clean.

http://www.virustotal.com/url-scan/report.html?id=8aaeec6758b62268dfcf92e2ccd41a3f-1324881519

but if avast is flagging it could be something in the java code that avast is flagging for.

this need further investigation.

[reuven]

Thank you.But who will make the investigation?

[ctheboot]

A script on the page has an infinite loop that will kill your Ram. That's the reason why it's blocking it. lol, I tried to go there and get the source code of the page it was blocking, got the source code page opened and avast blocks it. Source code is in the attachment if anyone can analyze HTML... (when I entered website with AV the website failed to load after much waiting.)

[!Donovan]

Hi Ctheboot

You should never visit a malicious site to view the source code.

See what Polonus wrote here: http://forum.avast.com/index.php?topic=90982.msg723387#msg723387

You can use online HTML viewers to avoid risking yourself to exploits, such as this one:
http://www.selfseo.com/html_source_view.php

[polonus]

Hi Ctheboot.

Our friend, Donovansrb10, is right here, see: http://urlquery.net/report.php?id=13481
And the network it is hosted on is not a very reliable one either, see: http://www.google.com/safebrowsing/diagnostic?site=AS:15545
while that overall situation has not been noticed at sitevet's yet apparently, see here: http://sitevet.com/db/asn/AS15545

So not every scanner has reliable or up to date results.
So you always should have to dig a little deeper sometimes to get to the real facts about crap and malcode on a particular URL, IP or Autonomous System,

polonus