- Posts: 1179
- Joined: Wed Aug 13, 2008 4:52 pm
puremis.net is infected:
Sign of "JS:Redirector-H7 [Trj]" has been found in "hxxp://puremis.net/" file.
- Posts: 696
- Joined: Sun Jul 13, 2008 12:16 pm
Decoding just enough to get the domain the inline script is pointing to, I get a martuz[.]cn. Similar to the gumblar script attack going around.
Who is online
Users browsing this forum: Majestic-12 [Bot] and 13 guests