Wordfence flags files in the WPO directory as malicious

  • Resolved RVH

    (@rvh)


    2 months ago

    Wordfence has flagged six files as malicious, here are the details of one of them. Are these files created by WPO or somewhere else?

    • Filename:?/homepages/6/d396770293/htdocs/clickandbuilds/ThorntonTaxpayers/wp-content/cache/wpo-cache/www.thorntontaxpayers.com/2024/02/index.html
    • File Type:?Not a core, theme, or plugin file from www.ads-software.com.
    • Details:?This file appears to be installed or modified by a hacker to perform malicious activity. If you know about this file you can choose to ignore it to exclude it from future scans. The matched text in this file is:?String.fromCharCode(…_c9476);

      The issue type is:?Spam:PHP/JSinjector.14401
      Description:?Obfuscated JS code that injects malicious links/redirects on the page

    The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support wpmansour

    (@wpmansour)

    The file flagged by Wordfence is a cache file created by WP-Optimize, not a core WordPress file.

    If the file contains suspicious obfuscated code, it could mean that malware injected it. To fix it:

    1. Clear the cache in WP-Optimize.
    2. Check for malware by scanning the site.

    If it’s clean after clearing, the issue should be resolved. Let me know if you need steps for clearing the cache!

    Thread Starter RVH

    (@rvh)

    thanks, that did it.

    Plugin Support wpmansour

    (@wpmansour)

    Glad to hear that. Thank you : )

Viewing 3 replies - 1 through 3 (of 3 total)
  • You must be logged in to reply to this topic.