There's certainly currently a poorly detected (VirusTotal reports 1/43) Java exploit being distributed by 66.197.235.245 through injection attacks. One example is injected obfuscated code pointing to tualette.ce.ms/content/field.jar but you may find possibly plenty of these. Currently only Sophos detects this as Exp/20100840-B. Blocking all traffic to 66.197.235.245 is the quickest technique to Protect against this particular
See More..
