See: http://www.quttera.com/detailed_report/www.jamboree.ro
Blackhole landing site: https://urlquery.net/report.php?id=162846
polonus
See: http://www.quttera.com/detailed_report/www.jamboree.ro
Blackhole landing site: https://urlquery.net/report.php?id=162846
polonus
This is being detected by avast there: https://www.virustotal.com/file/aa446d2b22d0051fd32afa5bd6186f616a61d0fa15c1d6bd08a4677697d1d721/analysis/
JS/iFrame.BO.1 which avast detects as JS:Redirector-XU [Trj]
see: http://wepawet.iseclab.org/view.php?type=js&hash=a743f4dc0f35731d0e8613c139ee2f53
also see: http://zulu.zscaler.com/submission/show/623c1754148ce0a4f37518fdb6c1258c-1353431004
unknown_html from that url has been closed since 2012-11-10 08:18:09
polonus
Avast webshield alerts when I check the site scanned here → http://wepawet.iseclab.org/view.php?hash=a743f4dc0f35731d0e8613c139ee2f53&t=1353432011&type=js with a javascript unpacker…
See attached image…
polonus