SiteCheck Signatures

  1. Home
  2. Signatures
  3. SiteCheck Signatures
  4. malware-entry-mwiframehd13

malware-entry-mwiframehd13

Description:

Javascript encoded code used to hide an iframe from http://img692.imagehacks.ws And a few different domains. This is used to load malware from external web sites while not being visible to the user.

 

Affecting:

VBulletin and WordPress sites.

 

Clean up:

This malware is generally hidden inside the template footer or header.

 

Malware dump (sample of malware):