-
Posts
-
Hi
wordfence says that the following file is infected: wp-content/themes/n672r4.php
What can I do to remove the virus?
If the file is important, or can I just delete?This is the homepage: http://www.kerkhoff-transporte.com/
That file is not in the theme but inside the themes folder
copy it locally and delete it. but if it is there it means there is an exploit somewhere probably from a plugin. Do you have the latest version of wordpress installed? You need to check all folders and files now for injectionsHi Monsoon,
I deleted the infected file. Until now everything seems to work.
I made a test with Wordfense and it displays two errors.Error 1
WordPress core file modified: wp-includes/version.php
Filename: wp-includes/version.php
File type: Core
Issue first detected: 35 secs ago.
Severity: Critical
Status New
This WordPress core file has been modified and differs from the original file distributed with this version of WordPress.Error 2
WordPress core file modified: wp-admin/admin-post.php
Filename: wp-admin/admin-post.php
File type: Core
Issue first detected: 1 min ago.
Severity: Critical
Status New
This WordPress core file has been modified and differs from the original file distributed with this version of WordPress.How should I handle it?
Hey!
You can try to re-install the wordpress core files with ftp (unpack the wordpress zip and overwrite the files on your server). All files you mentioned in your post are wordpress core files and not theme files.
Regards,
PeterHey Peter,
I found out that the changes are part of a plugin and thus should not be a virus.
So I left the files as they are.I still hope that the deleted virus does not come back.
Thans for the support!!
Regards,
TimHey!
Like Dude suggested you can overwrite the wp files to remove the affected file but if a plugin is forcing this files to be modified then you’ll have to disable that plugin. Contact the plugin author if the issue persist.
Best regards,
Ismael
- The topic ‘Infected Theme File’ is closed to new replies.