SiteCheck Signatures

  1. Home
  2. Signatures
  3. SiteCheck Signatures
  4. mwjs-iframe-hidden-push2

mwjs-iframe-hidden-push2

Description: A malicious iframe (or redirection) was identified and hidden inside some javascript obfuscation. It is used to push malware to anyone that visits the compromised site and to make it harder to detect.

Not very common type of malware. Some URLs:


91.230.110.31/index.php
.. a few more..

Those are often used to redirect the browser of exploit kits (Blackhole 2.0 and Phoenix).

Affecting: Any web site (no specific target).

Clean up: Nothing specific.

Last update: Sep/2012

Malware dump: