This is our own list of malicious redirect found in various wordpress website. Every website load a lot’s of internal and external .js files and sometimes it’s hard to be confirmed that if the network request or js request is really safe or malicious.
So here the list of domains, redirect script and location of the script injection to help developers to find the script and kill!

Script Injected in Infected files/Backdoor Date of Detection
[tcb-script type=”text/javascript” src=”https://is.gd/qlWAtZ”][/tcb-script] End of every post Shell in root directory 10.30.18
script src=”https:// db.allyouwant.online/main.js”> End of every post Every .js files on there server is infected 08.09.18
script src=”//go.oclasrv.com/apu.php?zoneid=1694479 wp-temp.php file wp-temp.php file 01.11.18
script src=”//fortpush.com/ntfc.php?p=1694481 wp-temp.php file wp-temp.php file 01.11.18