Adware site infested?

See: https://www.virustotal.com/nl/url/2f4327643764db02d4b5eddeae3e97bd4cde1a2b3387b3d2d8f3f3d3698060e9/analysis/
and http://sitecheck.sucuri.net/results/dbfillue.fjlove.pp.ua
Outdated server software: nginx/1.2.3
Missed: http://quttera.com/detailed_report/dbfillue.fjlove.pp.ua
Vulnerable Results from scanning URL: htxp://dbfillue.fjlove.pp.ua/js/main.js
Number of sources found: 38
Number of sinks found: 21 → http://jsunpack.jeek.org/?report=3d9be2ea1a961fa6089bfb127bf3ef66a9cfd667

What malware?

pol

Read about attack on main.js here: http://deadliestwebattacks.com/2012/10/31/javascript-is-harmless/
XSS can happen without user interaction even after the DOM is loaded.

polonus