Trojan + malware + IPIX
Submitted by Michael Quan on Sat, 2007-11-17 22:41.
http://www.pcworld.com/article/id,139736-c,trojanhorses/article.html
The GeoCities sites are infected with malicious JavaScript code that redirects the user's browser to secondary URLs hosted in Turkey, Ferguson said. The Turkish URLs, meanwhile, try to persuade the user to download a new codec that's supposedly necessary to view images on the GeoCities sites. According to Trend Micro's analysis, the bogus codec -- which claims to be for the 360-degree IPIX format -- is actually an identity- and information-stealing piece of malware