Sucuri Malware Labs
Malware entry: MW:JS:817Home | Notes | Malware data | Signatures | Tools | About
Description: Javascript included and used to distribute malware on WordPress sites. Also known as the crazymasya.com or inlovebot malware.
Domains used: (all inside the 91.217.162.0/24 network):
Affecting: Any WordPress sites at Rackspace / Mediatemple
Clean up: Malware is not hidden and a search / replace should fix it. Contact support@sucuri.net if you have questions or want us to clean it up for you.
Malware dump:
Domains used: (all inside the 91.217.162.0/24 network):
Affecting: Any WordPress sites at Rackspace / Mediatemple
Clean up: Malware is not hidden and a search / replace should fix it. Contact support@sucuri.net if you have questions or want us to clean it up for you.
Malware dump:
For all our web-based malware signatures, go here: http://labs.sucuri.net/?malwaredb