Warning: dangerous sites

["Rob, grandpa of Ryan, Trevor, Devon & Hannah" <rMslade () shaw ca>]

Sorry, but some of the sites listed here seem likely to contain malware.  I'm not 
sure that there is any point in trying to obfuscate it.

Apparently someone known as Kenny Strasser, or K-Strass, has been going around 
to television stations purporting to demonstrate yo-yo tricks (for a charity), and 
then turns out to be a talentless klutz.  YouTube members find this screamingly 
funny:

http://www.youtube.com/results?search_query=k-strass+&aq=f

It has now been picked up by Mashable, so will probably have a wider audience:

http://mashable.com/2010/05/12/yo-yo-champ/

(At least one link on that page is potentially dangerous.)

The thing is, various sites associated with this "project" (whatever it is) seem to be 
rather unusual.  Some of these may be the usual crop of malware sites relying on 
SEO, but at least one rather strange site is spelled out in one of the videos:

zipzapllc.com

A Twitter account warns against some "fake" sites, and Mashable seems to be 
directing people to one of those.  (The Twitter account says their own site is 
zimzaminc.com )

zimzamyoyo.com

zimzamyoyos.com

Stumbled across this by accident, and so far have only been able to determine that 
there is a lot of JavaScript and redirecting going on.


======================  (quote inserted randomly by Pegasus Mailer)
rslade () vcn bc ca     slade () victoria tc ca     rslade () computercrime org
Never mistake motion for action.                  - Ernest Hemingway
victoria.tc.ca/techrev/rms.htm blog.isc2.org/isc2_blog/slade/index.html
http://blogs.securiteam.com/index.php/archives/author/p1/
http://twitter.com/NoticeBored http://twitter.com/rslade
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.