Hi. My computer was infected by trojan PHP:Decode-DE[Trj]. This comes from a web content that I am managing, it was under an unknown plugin named msend under word press web engine (wp-contents/plugin/msend). The consequence I had was that my web site was code injected with new undesirable pages for selling drugs and others.

Does anybody know what’s the purpose of this trojan and if it is only affecting to word-press environment or it is also checking for passwords of bank accounts and others?

Thank you.
Jordi

Attach your basic diagnostic logs. (MBAM, FRST and aswMBR)
Instructions: https://forum.avast.com/index.php?topic=53253.0

Information about the trojan > http://tinyurl.com/q82xywk
Information about trojans > http://tinyurl.com/orl4stk

Malware naming (short for the users):
A:B-C[D]
A = “platform” (eg: W32, W64, PHP)
B = Name of the malware
C = Version of the malware
D = Type of the malware (eg: Trojan, Virus, Adware)

A general naming standard accepted by all(?) anti malware vendors:
http://www.caro.org/naming/scheme.html

This is The info given by Microsoft. http://www.microsoft.com/security/portal/threat/encyclopedia/Entry.aspx?Name=Trojan%3AJS%2FIframeinject.AE#tab=1

Thank you everybody for your replies and feedback.