SiteCheck Signatures

  1. Home
  2. SiteCheck Signatures
  3. malware-entry-mwiframetiocp


Description: Javascript encoded to hide an iframe from:

This is used to load malware from external web sites while not being visible to the user.

Affecting: "MODx Content Management System" users.

Clean up: This malware is generally hidden at the manager/includes/ file (encoded with eval(base64_decode)).

Malware dump (sample of malware):

< iframe src = "