Hijacked web server used for drive-by malware installations. Deceptive web pages planted on hundreds of sites load a set of Java Scripts which in turn attempt to load a malicious webpage.
In this case it is located on screenprinting.net
Gary Warner links this to the Zeus bot, which steals passwords, and was recently involved in the arrest of a group of Ukrainians whole stole over $70 million from US companies.
http://garwarner.blogspot.ca/2012/03/zeus-still-spam-threat.html
See more of the description of this problem at
http://www.mywot.com/en/forum/21464-qai-jar-malware-cve-2010-1885
http://ksforum.inboxrevenge.com/viewtopic.php?f=14&t=4720
Website's engaged in the use of browser, operating system and other such exploits,
aswell as those engaged in exploits via social engineering.
The site is listed on hpHost.
http://hosts-file.net/?s=Browse&f=EXP
[CVE-2010-0188, CVE-2010-1885, CVE-2012-0507]
'WAIT PLEASE
'Loading…'
A criminal Zeus botnet has been known to use this site in an attempt to spread malware.
See: http://www.mywot.com/en/forum/21464-qai-jar-malware-cve-2010-1885