A heavily obfuscated script injected into the page that references an iframe has been used to load content from a remote site. The WHOIS record that remote site strangely says:Address : 56/2 Sun str str. : Dallas, Dallas, Beijing, China. : Beijing, Beijing. .Mal/iframe-F first seen 2009-08-05 s website has been infected with multiple infections on this site: Mal/Badsrc-A, Mal/rame-F and Mal/iframe/DD.”]
Source: https://nakedsecurity.sophos.com/2009/10/22/long-stars-site-infected/

