See: https://www.virustotal.com/nl/url/210f8f4b3e7c463e4a0b9b9c6b97f36bdd8ba25820263d33ef320c500ac41510/analysis/1441361632/
and
https://www.virustotal.com/nl/file/ac2c409713c32eb0ed6bd1040bf4a48e7125589a923babf4e9f736178817aebc/analysis/1441345742/
Detected: http://urlquery.net/report.php?id=1441302938101
Consider: -http://www.domxssscanner.com/scan?url=http%3A%2F%2Furl.downxia.com%2Fdown%2Fpowerpoint2003_ppt2003%4034_16346.exe
For that see: https://www.mywot.com/en/scorecard/cdn2.editmysite.com?utm_source=addon&utm_content=popup
https://www.eff.org/https-everywhere/atlas/domains/editmysite.com.html
Time to start some DNS scan: bad zone: Could not get name servers for ‘cdn2.editmysite.com’,
and here we have the report with quite some issues (DNS reports can also reveal various security issues):
http://www.dnsinspect.com/editmysite.com/1441362194
Name servers software versions are exposed: 9.10.2+Dyn-ETM-2536
Cause for confusion: WARNING: MX records duplicates (same IP address):
2a00:1450:4010:c01::1a: [alt1.aspmx.l.google.com. aspmx2.googlemail.com.]
74.125.130.26: [alt2.aspmx.l.google.com. aspmx3.googlemail.com.]https://www.virustotal.com/nl/ip-address/199.34.229.102/information/ → http://dpivst.com/en/ireport/editmysite.com
→ http://dpivst.com/en/ireport/downxia.com

polonus (volunteer website security analyst and website error-hunter)