HTML_REDIR.WQVX

This Trojan executes when a user accesses certain websites where it is hosted.

This is the Trend Micro detection for Web pages that were compromised through the insertion of a certain malicious script. Once a compromised site is visited, the user is redirected to a certain malicious site.

Arrival Details

This Trojan executes when a user accesses certain websites where it is hosted.

Other Details

This is the Trend Micro detection for Web pages that were compromised through the insertion of a certain malicious script.

Once a compromised site is visited, the user is redirected to the following malicious site:

• http://{BLOCKED}erseonline.com/wp-includes/js/jquery/jquery.js
• http://{BLOCKED}erseonline.com/wp-includes/js/jquery/jquery-migrate.min.js
• http://{BLOCKED}erseonline.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js
• http://{BLOCKED}erseonline.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js
• http://{BLOCKED}erseonline.com/wp-content/plugins/easy-facebook-likebox/public/assets/popup/jquery.magnific-popup.min.js
• http://{BLOCKED}erseonline.com/wp-content/plugins/easy-facebook-likebox/public/assets/js/jquery.cookie.js
• http://{BLOCKED}erseonline.com/wp-content/plugins/easy-facebook-likebox/public/assets/js/public.js
• http://{BLOCKED}erseonline.com/wp-content/themes/virtue_premium/assets/js/vendor/modernizr-2.7.0.min.js
• http://{BLOCKED}erseonline.com/wp-content/plugins/hotspots/js/heatmap/heatmap.js