On static cache malicious links embedded
-
I’m using bedrock Continuous Integration environment. I’m having problem, that when static cache is created I get these links added to html:
[removed by moderator]
With these titles:
Download WordPress Themes Free Premium WordPress Themes Download Download WordPress Themes Free Download WordPress Themes ZG93bmxvYWQgbHluZGEgY291cnNlIGZyZWU= download xiomi firmware Download Nulled WordPress Themes udemy course download free
When I grep whole repository deployment directory with:
grep -l -r thewpclub.net, I get all cached page files listed. And it seems that these string do no exist anywhere. Scanned database as well withwp search-replace [removed by moderator] '' --dry-run --network --recurse-objects
But still found nothing. Any suggestions, how to track down, what kind of malicious code is getting hooked to the_content?
Plugins I’m using:
"php": ">=7.1", "ext-fileinfo": "*", "composer/installers": "1.5.*", "koodimonni/composer-dropin-installer": "^1.2", "vlucas/phpdotenv": "^2.5.1", "johnpbloch/wordpress": "^4.9.6", "oscarotero/env": "1.1.*", "roots/wp-password-bcrypt": "1.*", "advanced-custom-fields/advanced-custom-fields-pro": "^5.7.5", "wpackagist-plugin/loco-translate": "^2.1.4", "wpackagist-plugin/acf-content-analysis-for-yoast-seo": "^2.1.0", "wpackagist-plugin/autoptimize": "^2.3.4", "wpackagist-plugin/cache-enabler": "^1.3.0", "wpackagist-plugin/cloudflare": "^3.3.2", "wpackagist-plugin/duplicate-post": "^3.2.2", "wpackagist-plugin/easy-affiliate-links": "^2.6.2", "wpackagist-plugin/live-composer-page-builder": "^1.3", "defconf/google-analytics-dashboard-for-wp": "^5.3.5", "wpackagist-plugin/media-cleaner": "^5.0.0", "wpackagist-plugin/ninja-forms": "^3.3.17", "wpackagist-plugin/optimus": "^1.5.0", "wpackagist-plugin/reveal-ids-for-wp-admin-25": "^1.5.3", "wpackagist-plugin/schema": "^1.7.1", "wpackagist-plugin/schema-default-image": "^1.0", "wpackagist-plugin/schema-review": "^1.1", "wpackagist-plugin/simple-sitemap": "^2.5", "juslintek/Super-Progressive-Web-Apps": "^1.9", "wpackagist-plugin/tinymce-advanced": "^4.7.11", "wpackagist-plugin/wp-retina-2x": "^5.4.0", "appscreo/easy-social-share-buttons3": "^5.6.1", "ninja-forms/ninja-forms-conditionals": "^3.0.22", "ninja-forms/ninja-forms-style": "^3.0.25", "ninja-forms/ninja-forms-multi-part": "^3.0.23", "never5/related-posts-for-wp-premium": "^1.7.5", "wpackagist-plugin/favicon-by-realfavicongenerator": "^1.3.13", "wpackagist-plugin/html-editor-syntax-highlighter": "^2.2.3", "wpackagist-plugin/video-embed-thumbnail-generator": "^4.6.20", "wpackagist-plugin/multisite-post-duplicator": "^1.7.6", "wpackagist-plugin/wf-magnific-lightbox": "^0.9.12", "juslintek/acf-country": ">=1.4.3@dev", "wpackagist-plugin/tinymce-visualblocks": "^1.0.5", "wpackagist-plugin/wordfence": "^7.1.16", "wpackagist-plugin/phoenix-media-rename": "^1.2.5", "wpackagist-plugin/wp-redis": "^0.7.0", "wpackagist-plugin/query-monitor": "^3.1.0", "yoast/wordpress-seo-premium": "^9.0.3", "wpackagist-plugin/gutenberg": "^4.1.1", "wpackagist-plugin/shortcode-ui": "^0.7.3", "wpackagist-plugin/widget-context": "^1.1", "juslintek/juslintek-gravatar-image-cache": "^0.1.3", "wpdreams/ajax-search-pro": "^4.14", "bangpound/composer-dotenv": "^1.0@dev", "wpackagist-plugin/dorzki-notifications-to-slack": "^2.0", "wpackagist-plugin/post-smtp": "^1.9"
Viewing 4 replies - 1 through 4 (of 4 total)
Viewing 4 replies - 1 through 4 (of 4 total)
- The topic ‘On static cache malicious links embedded’ is closed to new replies.