Site in question: htxp://web54.login-19.hoststar.ch/
Site found infected here: 2010-06-22 23:28:24 http:// web54.login-19.hoststar.ch/ B2AB0FFDB587D0751D449132CC41BF58 85. 10. 200. 141 DE PUA.HTML.Infected.WebPage-2
Found clean here: http://www.UnmaskParasites.com/security-report/?page=web54.login-19.hoststar.ch
Found safe here: http://safeweb.norton.com/report/show?url=web54.login-19.hoststar.ch
Nothing here:
http://www.virustotal.com/url-scan/report.html?id=c24ef25f9d8a370d004b011d5a925721-1300633401
and here: http://www.virustotal.com/file-scan/report.html?id=d66ef26f5212d6f3f4526131677bcd35d6b7947a4be17589fc7d54abf09e3d6e-1300637234
Nothing here: http://wepawet.iseclab.org/view.php?hash=c24ef25f9d8a370d004b011d5a925721&t=1300638078&type=js
Something there, see: htxp://jsunpack.jeek.org/dec/go?report=2a5483151d4954a9f28325499de89ff3eed33f98 (Fiesta exploit?)
polonus