SiteCheck Signatures

  1. Home
  2. SiteCheck Signatures
  3. malware-entry-mwgdd5



Code used to insert a malicious javascript on many WordPress sites hosted at GoDaddy. The malicious code is added to all PHP files (or the database), infecting each post. Loads the malware from:

Generally infecting all WordPress posts. More details here:

Clean up:


Malware dump (base 64 added to the .php files):