Location of malware: script source: htxp://inetrate.info/3
See: http://www.unmaskparasites.com/web-page-options/?url=http%3A//inetrate.info/3&susp=1&sb=1
Sucuri finds: Malware found in the URL: htxp://inetrate.info
Known javascript malware. Details: http://sucuri.net/malware/entry/MW:OSCOM:1
Blacklisted javascript included on: http://inetrate.info
Javascript included from a blacklisted domain. Details: http://sucuri.net/malware/entry/MW:BLK:2
Javascript:: nt07 .in
http://sucuri.net/malware/malware-entry-mwjs519
Filescan: http://www.virustotal.com/file-scan/report.html?id=25a32e3a879fee965981791d8e0ff44fc69fad5dbd07c93eeb37279d42a400af-1300672737
See what it writes here: http://wepawet.iseclab.org/view.php?hash=90218f40c3762738149130b4551d9208&t=1300828590&type=js
nested script block - exploitable bug…
polonus