SiteCheck Signatures

  1. Home
  2. Docs
  3. SiteCheck Signatures
  4. malware-entry-mwiframehd36

malware-entry-mwiframehd36

Description: A Hidden iframe was detected. This is often used to load malware
from infected Ad servers. Sites used in the malware campaign:
http://liyerfit.com/blogs/martin
.urihq.com
http://bikleman.com/sex/index.php
.blamesllek.com
(and others).

Affecting: Any web site (using Openx < 2.8.7)

Malware dump (sample of malware):

OX_d2d1ac07 += "if(typeof run == 'undefined'){dc.writeln..