The ASProx botnet is back to its old tricks of attacking vulnerable ASP pages on IIS Servers trying to add a malicious javascript link to legitimate webpages by manipulating the underlying Microsoft SQL servers. The main site which is hosting the malicious code right now is “ads-t.ru”. Sites which have been hacked by this attack tool will contain a tag which leads to the page “adtcp.ru/ads.js”. A quick Google search for this string will currently reveal more thousands of webpages which have had this code injected.”]
Source: http://garwarner.blogspot.com/2009/10/cyber-security-awareness-month-day-one.html