Nice to see that rather recently, 18 hrs ago, avast added TR/Graftor.913125 to its detection as JS:Iframe-ER [Trj]. We are being protected.
Zscaler here: htxp://zulu.zscaler.com/submission/show/04f7816df2b9f4a109e36ac0c1986d1f-1331315009
and Sucuri here: htxp://sitecheck.sucuri.net/results/http://mrclynk.free.fr/css.js both missed it.
Here we have a suspicious: htxp://urlquery.net/report.php?id=29931
Unmasked parasites reports 1 scripting exploit,
polonus