1446 pages indexed by google console for wverrors.php – should I be concerned?

First off, try scanning your site with wordfence plugin

• This reply was modified 6 years, 5 months ago by t-p.

That looks to me like your site may have been hacked. Best place to start may be contacting your host, or here if you want to tackle it yourself:
https://developers.google.com/web/fundamentals/security/hacked/

EDIT: Oops…guess I left this page open too long before answering…. ??

• This reply was modified 6 years, 5 months ago by sbcjr.

I thought I replied, but don’t see it – I apologize if it’s a duplicate lol

is wp-content/wverrors.php a typical file in wordpress or possibly the weaver II pro theme?

When I do a google search for “wp-content/wverrors.php hacks”, I get a number of sites all with similar URLs and realistic looking title/description. I don’t see anything about it being a known file altho that may get lost in the pile.

I clicked one and it went to the wverrors.php and then redirected to a page that was obviously malicious. It went full screen and started an audio file talking about microsoft even tho I’m on a mac.

how does a site get hacked? installing a plugin?

I’m just waiting on the site owner to do any kind of scans or contact the host.

is wp-content/wverrors.php a typical file in wordpress

That’s not a WP core file.

Earlier I checked you site by Sucuri online site check, and did not show any malware.

But that does not mean your site is not infected.

That was the reason I suggested to scan it with wordfence plugin.

If you find your site compromised, then carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures.

scan done

3 files came up as malicious

read through the 1st guide

deleting all but fully trusted plugins

the theme we use is no longer supported.

looks like we have a path to follow now. Thanks for the help ??

Ray

PS I’ll try to remember to post a follow up as to how the fix is going next week

oh and the wverrors.php I suspect is part of the weaver II pro theme used. We are looking into changing to a more current theme as well.

Glad you got it sorted ??

When you’re done, you may want to implement some (if not all) of the recommended security measures.

If you’re unable to clean your site(s) successfully, there are reputable organizations that can clean your sites for you. Off hand, couple of names that come to mind are Sucuri and Wordfence.

A followup question:
I’m looking at themes now. What is the best way to determine if the theme:
– adhere’s to security standards
– has regular updates

The last theme we had seemed to have no support. A search for it brought up a new theme by the developer and ours was listed under archived.

I can log into the wordpress site and “add theme”. I see www.ads-software.com free themes. I tried one that looked good with a bit of work, but did not have a very good mobile look.

We have the Jetpack plugin installed and it has a link for jetpack themes which points to wordpresss.com. They have a more to choose from including paid themes. All seem to have a good mobile look.

I am quite leery about doing a google search for wordpress themes.

Any suggestions would be appreciated,
Ray