See: https://www.virustotal.com/nl/url/e3e0fc0386e5f802db0c661eb53e6f9ef6958a388a1c55093d81c4e3a863a61c/analysis/
See: https://www.virustotal.com/nl/file/e53bdf710e2c5fae8ef022f95d641aba1e131962c1a7014568f8874d962fafa5/analysis/1402949498/
also flagged here: Suspicious code detected:
Object: htxp://web.pdx.edu/~drynd/snz/ *
SHA1: a91fbdb3ef1cfe8848cd1291c17e9f2abd88b01b
Name: Suspicious-WI.
Website Errors Detected Critical Contact Hosting Provider
Latest malicious detection: http://urlquery.net/report.php?id=1406225577164
On the malware obfuscation circumvention used: http://nakedsecurity.sophos.com/2012/04/05/ccittfax-pdf-malware/
link article author = Paul Baccas
- Redirect landing here, re: http://www.bleepingcomputer.com/forums/t/444901/d3lvr7yuk4uauicloudfrontnet-virus/
users may get an update in firefox via Game Labs add-on with a red banner for a non-legit Firefox update!
polonus