Malicious iFrame injection poli domains specially registered!

See: http://2013.netorginfo.com/20130308/opo.htm
Poli domains specially registered for malicious iFrame injection, see: http://urlquery.net/report.php?id=1485379
See the Nameserver changes here: http://www.dailychanges.com/rolfdtns.kz/2013-03-07/
Iframe source: htxp://zzzzz.interview.hop.clickbank.net/
redirecting conditionally to: hxtp://zzzzz.interview.hop.clickbank.net/hop/?CBRehoppp2=http%3A%2F%2Fjob-interview-answers.com%2Fjob_interview_answers.php%3Fhop%3D0&hstr=1363548433203%7C0%7C%7C44md4esqtd%7Cinterview&code=%7B3%7D&key=B79B3005&parms=&s=default&ds=0
with script src: htxp://dzpgtrsevq4e.cloudfront.net/js/jwplayer.js
script src= htxp://cdn.fseretiopo.com/?695e835e3e3dbbb26c332ab841d3b51e (not found)
Chunk of suspicioius code here: [quote]
//**< a name=“trustlink” href=“htxp://secure.trust-guard.com/certificates/1122” target=“_blank” onclick=“var nonwin=navigator.appName!=‘Microsoft Internet Explorer’?‘yes’:‘no’; window.open(this.href.re​place(‘htxp’, ‘htxps’),‘welcome’,'location='​nonwin​ ',scrollbars=yes,width=517,height='​screen.availHeight​ ‘,menubar=no,toolbar=no’);return false;” oncontextmenu=“var d = new Date(); alert(‘Copying Prohibited by Law \251 ‘​d.getFullYear()​’.’);return false;”> < img name=“trustseal” alt=“Business Seal” style=“border: 0;” src=“htxp://seals.trust-guard.com/business-1122-large-gray.gif”/> < /a> [quote]

No report is generated for your entry, either by removal request from the website owner, or the data behind job-interview-answers dot com contains inappropriate content (adult, spam, malware, low trust or so)! You better stay away!

polonus