catt.php is this malware?

  • Charles Sandor

    (@charles-sandor)


    8 years, 2 months ago

    I just got this message from GoDaddy today. Our website is hosted by GoDaddy and we are using WooCommerce on the site. This is the message:

    We recently completed a routine security checkup of our servers and platforms. Our scans flagged your aowilson.ca hosting accounts as containing possible malware.

    Please sign in to your hosting account and review the following content and remove or fix the files listed below:
    php.malware.fopo_obfuscator.001 – html/catt.php

    I ran a check on the site with Sucuri and Virus Total and both checks found no malware issues.

    There is a file on the site called catt.php

    Is this a malware file or is it tied to the e-commerce on the website. Want to know if I should delete this file and hope it won’t imapct the ecommerce

    The page I need help with: [log in to see the link]

Viewing 7 replies - 1 through 7 (of 7 total)
  • Moderator t-p

    (@t-p)

    8 years, 2 months ago

    I ran a check on the site with Sucuri and Virus Total and both checks found no malware issues.

    Sucuri also have this Disclaimer: Sucuri SiteCheck is a free & remote scanner. Although we do our best to provide the best results, 100% accuracy is not realistic, and not guaranteed.

    There is a file on the site called catt.php

    Which directory did you find this file in?

    Thread Starter Charles Sandor

    (@charles-sandor)

    8 years, 2 months ago

    It’s in the main folder with the other wordpress files like index.php, wp-config.php etc.

    Moderator t-p

    (@t-p)

    8 years, 2 months ago

    Then that’s not one of the Core files!

    Thread Starter Charles Sandor

    (@charles-sandor)

    8 years, 2 months ago

    Yes I know. I was wondering if it may be tied to the WooCommerce plugin. If not, then I guess I should remove it, right?

    Moderator t-p

    (@t-p)

    8 years, 2 months ago

    I was wondering if it may be tied to the WooCommerce plugin.

    I recommend asking at https://ww.wp.xz.cn/support/plugin/woocommerce so the plugin’s developers and support community can help you with this.

    jayhill

    (@jayhill)

    8 years, 2 months ago

    Most likely it is malware. I do not have a catt.php file in my sites with Woocommerce.

    There was recently a security vulnerability that was patched in the latest version of Woocommerce. Be sure to update all of your plugins and themes to ensure that any known security vulnerabilities are patched.

    Moderator t-p

    (@t-p)

    8 years, 2 months ago

    Carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures.

Viewing 7 replies - 1 through 7 (of 7 total)

The topic ‘catt.php is this malware?’ is closed to new replies.

Tags