We saw the malware in two plugins:
Shareaholic and Mini Fancybox
I deleted those files and did not install it anymore since it may trigger it again.
Just in case this helps
Oh ok. Thanks for the feedback. I’ll get in touch with our hosting service about it
Hi. Lynne and I are from the same site. I handle most of the technical stuff. We scanned using the sucuri tool at and we saw that it is in some of the plugins. I was able to remove most of it, but I don’t know how to access this jscript since it’s not in one of the plugins installed:
http://www.lynne-enroute.com/numlock/wp-includes/js/jquery/jquery.js?ver=1.7.1
It showed the malware code in it and if I just know what file that is, I can access it in the Editor and delete the malware code. Can anyone help me in what part of the WordPress admin I can look for this script?
Thanks in advance
