Description:
Javascript encoded code used to hide an iframe from http://img692.imagehacks.ws And a few different domains. This is used to load malware from external web sites while not being visible to the user.
Affecting:
VBulletin and WordPress sites.
Clean up:
This malware is generally hidden inside the template footer or header.
Malware dump (sample of malware):