SiteCheck Signatures

  1. Home
  2. Docs
  3. SiteCheck Signatures
  4. mwjs-include-bitly


Description: An unsafe javascript remote include or iframe call was identified in the site. It it used to load malware from a (or short URL which is then redirected to the malicious domain.

This is done to hide the original URL and make it harder for scanners to identify the malware.

Not very common type of malware. Some URLs:
.. a few more..

Those are often used to redirect the browser to spammy sites. However, since this is a generic rule, the malware can change from site to site.

Affecting: Any web site (no specific target).

Clean up: Nothing specific.

Last update: Aug/2012

Malware dump: