SiteCheck Signatures

  1. Home
  2. Signatures
  3. SiteCheck Signatures
  4. malware-entry-mwiframehd22

malware-entry-mwiframehd22

Description: Javascript encoded code used to hide an iframe from
http://geonon.net/in.php (and other domains)

This is used to load malware from external web sites while not being visible to the user.

Affecting: Any web site.

Clean up: This malware is generally hidden inside the template footer or header.

Malware dump (sample of malware):