ALERT: Please treat advertising at clevescene.net with extreme caution

image

 

Same old same old. A rhapsody advertisement.  Reported to clevescene

URL of malvertizement:
72.167.208.179/adserver/www/images/rhapsody728x90.swf

Adopstools results confirming malicious code:
http://www.adopstools.com/index.asp?section=quicklink&id=IN91asr1bK1W3pv3 

URLs encountered:
hitoptimist.com/crossdomain.xml

and:
hitoptimist.com/c/index.php?<<redacted>>

as well as:
statsnclick.com/?cmpid=<<redacted>>

From there we end up at:
crustat.com/ts/in.cgi?<<redacted>>

Before ending up at:
pnfzetnax.net/pro/uspremorse/

Before ending up at the fraudware site:
78.47.132.220/cr/adv/142/index.html

Published Wed, Apr 22 2009 22:47 by sandi
Filed under: ,