See: https://www.virustotal.com/nl/url/03bd9f606fc4354b8e14a71cc6b79d0d9fbb446b633f0a502fe04af4562cf0cd/analysis/1395591870/
Flagged here: http://quttera.com/detailed_report/nitkiozz.hotbox.ru
Detected potentially suspicious initialization of function pointer to JavaScript method document.write __tmpvar140497762 = document.write;
→ http://fetch.scritch.org/%2Bfetch/?url=http%3A%2F%2Fnitkiozz.hotbox.ru&useragent=Fetch+useragent&accept_encoding=
See: http://sitecheck.sucuri.net/scanner/?scan=http%3A%2F%2Fnitkiozz.hotbox.ru blacklisted for insecure downloads.
See: https://www.mywot.com/en/scorecard/nitkiozz.hotbox.ru
100/100% malicious →
http://zulu.zscaler.com/submission/show/287628eb5eda163ab29bae51867fd431-1395594124
pol