Suspicious Malicious file

This topic contains 4 replies, has 2 voices, and was last updated by Guust 7 years, 9 months ago.

We have moved to a support ticketing system and our forums are now closed.

Open Support Ticket

Tagged: Suspicious Malicious file

Author

Posts
July 23, 2016 at 7:33 am #232251

iconraju
Expired Member

Post count: 187

Hi Paolo,

I installed WordFence Plugin and ran a scan report.

My site: hyderabad.eypindia.info

The scan report has thrown up a warning for one of the files in Geo Directory Framework.

The screenshot is here.

Kindly advise me on this.

Thanks and rgds,

gsr

July 23, 2016 at 8:06 am #232254

Guust
Moderator

Post count: 29970

And what is the full path to the file?
Download a fresh copy of GDF, extrract on your local computer and check if that file is there. If it is there then it is a GD file. If it is not there, somebody got access to your server.

July 23, 2016 at 8:16 am #232259

iconraju
Expired Member

Post count: 187

Hi Guust,
Thanks for your response.
I will have it checked and get back to you.

Thanks and rgds,

gsr

July 23, 2016 at 8:25 am #232262

iconraju
Expired Member

Post count: 187

Hi Guust,

The file is:mode-php.js
/home/eypindia/public_html/hyderabad/wp-content/themes/GeoDirectory_framework/
options/ReduxCore/inc/fields/ace_editor/vendor/mode-php.js

I downloaded a fresh GD Framework and found the above file in it (mode-php.js)

I hope it is OK. Please confirm.

Thanks and Rgds,

gsr

July 23, 2016 at 8:37 am #232279

Guust
Moderator

Post count: 29970

Sure should be fine then. WordFence gives a lot of false positives.
Author

Posts

Viewing 5 posts - 1 through 5 (of 5 total)

We have moved to a support ticketing system and our forums are now closed.

Open Support Ticket