Thanks for confirming avast does not detect this yet, Norman does not either.
But the avast webshield should detect this, as it detects JS:Illredir-AQ[Trj] on
-http://sucuri.net/malware/malware-entry-mwjsgen2
But for the given malcious page, the php download will begin immediately without any avast alert.
Additionaly I will give the bizimbal report: http://www.bizimbal.com/odb/details.html?id=1181546
Here we can read more about this PHP malware: -http://www.bizimbal.com/docs/article02.html(avast will alert this link as PHP:Small-AG[Trj] a flag that is safe to ignore. as it detects parts of the code, but there is no payload inside the article. It describes how easily site servers are being probed…article author = Yavuz Darendelioglu a.k.a bioyavuz of Offensive IP Database,