Causing .suspected files

  • Resolved hs1972

    (@hs1972)


    8 years, 3 months ago

    Since the update I seem to be having a problem where some of my files on my website are getting appended with .suspected.

    On investigation in the database it appears that Relevanssi is causing the issue somehow. Has anyone else had this problem? I’m concerned it’s been compromised in some way. Please can someone help?

    https://www.ads-software.com/plugins/relevanssi/

Viewing 5 replies - 1 through 5 (of 5 total)
  • Plugin Author Mikko Saari

    (@msaari)

    It’s quite possible your site is being hacked. I would suggest being in touch with your hosting provider about this.

    Thread Starter hs1972

    (@hs1972)

    Many thanks for getting back to me. There is an entry in Relevanssi in the database. I’ve captured a screenshot here: https://snag.gy/dnKW72.jpg

    Is it supposed to be there?

    Thread Starter hs1972

    (@hs1972)

    Sorry please see here: https://snag.gy/nGMfip.jpg

    Plugin Author Mikko Saari

    (@msaari)

    Yes, that’s the Relevanssi index, and it has the word “suspected” in it, because your site has the word “suspected” in it in post ID 39. But that has nothing to do with your files being suspicious; that’s happening because they may contain injected code, and Relevanssi has nothing to do with that.

    Thread Starter hs1972

    (@hs1972)

    Thanks Mikko for getting back to me. I went back to my hosting company. It turned out they’d given me a false positive. The word was merely picked up because it was in my terms and conditions. They have thankfully found the infected files that are causing the problem (not in Relevanssi), and I’ve been able to fix the site. Unfortunately, there’s no information about how it initially happened so will have to see how it goes.

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Causing .suspected files’ is closed to new replies.