Again the avast webshield in action on JS:Redirector-HX[Trj]

I have analyzed the attack logged here: http://sakrare.ikyon.se/?ip=212.97.132.134
See: http://urlquery.net/report.php?id=12782
But when I tried a jsunpack analysis on that Danish site, avast webshield alerted to
JS:Redirector-HX[Trj]
Oh good, well, fine,] so we are being protected by the webshield here.
And on the url avast detects HTML:Iframe-OX [Trj] (so double protection)
Sucuri flags the malware as: Javascript included from a blacklisted domain.
Details: http://sucuri.net/malware/entry/MW:BLK:2
This is being found according to Unmasked Parasites
-query4html.co.cc suspicious :arrow_upper_right: - displaying 1 of 1