Pop-up adware on external link?

See: htxps://messenger.ngageics.com/ilnksrvr.aspx?websiteid=67-27-129-222-128-67-24-227 → http://jsunpack.jeek.org/?report=0b09f3b041851162143231fbce3b30fb128e0fd6

external link from this address : URL: htxp://www.zacharassociates.com - W32/Caphaw DriveBy Campaign Statistic.js
detection credits go to our forum member Pondus, thanks Pondus!

urlquery: http://urlquery.net/report.php?id=8693084 W32/Caphaw DriveBy Campaign Statistic.js IDS

polonus

To read on the malcode campaign, see google results: https://www.google.nl/search?q=W32%2FCaphaw+DriveBy+Campaign+Statistic.js&oq=W32%2FCaphaw+DriveBy+Campaign+Statistic.js&aqs=chrome..69i57j69i58&sourceid=chrome&espv=210&es_sm=93&ie=UTF-8#es_sm=93&espv=210&q=W32%2FCapshaw+Drive+By+Campaign+
So this an JAFT detection (just another freaking trojan) → http://cn.securityfrontline.org/tag/trojan/page/2 and http://www.dataprotectioncenter.com/antivirus/eset-nod32/caphaw-attacking-major-european-banks-using-webinject-plugin/

polonus