Description: A Hidden iframe was detected. This is often used to load malware
from infected Ad servers. Sites used in the malware campaign:
http://liyerfit.com/blogs/martin
.urihq.com
http://bikleman.com/sex/index.php
.blamesllek.com
(and others).
Affecting: Any web site (using Openx < 2.8.7)
Malware dump (sample of malware):
OX_d2d1ac07 += "if(typeof run == 'undefined'){dc.writeln..