You can open the site in Windows Notepad to see the code and to prevent it from executing in a browser window.
DO NOT OPEN THIS LINK IN A BROWSER! USE NOTEPAD
Here's how:
- Click "Start" then "All Programs"
- Click "Accessories" then "Notepad"
- Click "File/Open"
- In the "File name" box enter "http://www.aryan"
- Now enter ".es/img/ken.gif" (after "aryan" and without quotes)
- Under "Files of Type" select "All Files"
- Click "Okay"
This explains how the user's machine gets infected but not how the hacker gained access to your server.
Check your permissions and ask for help from your host. They may be able to help you in tracking down the problem.
If you have one, I'd check your .htaccess file to a mod rewrite that points the user to the malicious code. Check your server for "response.redirect" code as well.