What is ET POLICY PE EXE or DLL Windows file download threat alert?

[polonus]

see: https://www.virustotal.com/nl/url/fe20ec02eb19ccdaf0119acd4b1d80021c01d161b49e76edffcc210ec0c8e664/analysis/
and
http://urlquery.net/report.php?id=1410873099312
and http://www.herdprotect.com/ip-address-54.164.159.131.aspx
Verdict there is: Inconclusive.
also for IP IDS alerts for: ET INFO EXE - Served Attached HTTP flow:to_client,established - misc, activity, characteristic for downloader exploits. -PHP 5.3.3 ibase_gen_id() off-by-one Overflow Vulnerability · php. & http://blog.benjaminwalters.net/?p=22139 (info credits: Mu)
http://nginx.org/en/security_advisories.html 
Script to dowload video converter ->

Code: [Select]

  window.onload = function ()
    { 
       window.location = 'htxp://www.hdrunnerz.com/yt_downloader_v3?aflt=CD1&mt_aflt=CD5&src=version5';
    }
Still only Emisoft to flag: https://www.virustotal.com/nl/url/05b87e5686488b6a04cc18d7f8e8f2ad84483735668aa1aa561449820f6e56aa/analysis/1410883913/ external link:
wXw.trustedleadtracking.com/lead/e2c4w274c4w2x2/&aid= benign
[nothing detected] (jsvar) wXw.trustedleadtracking.com/lead/e2c4w274c4w2x2/&aid=
     status: (referer=wXw.hdrunnerz.com/v3/js/scripts.js)
 [javascript variable] URL=wXCw.trustedleadtracking.com/lead/e2c4w274c4w2x2/&aid=
Please be aware The data shown here represents the data for the parent website trustedleadtracking dot com. As this website is a sub-domain, the actual creator/administrator of the website may be different to this data shown. ..hidden owner.

polonus