Issue with possibly compromised files after hack attack

  • Resolved danc77

    (@danc77)


    9 years, 11 months ago

    Hi All

    Scanning my public HTML folder after failed hack attack result in files reported as suspicious.
    Specifically these 3 files

      plugins/types/library/toolset/types/embedded/classes/path.php

    – Regular expression match = [symlink\s*\(]

      plugins/types/library/toolset/types/resources/js/codemirror234/mode/clike/index.html

    – Suspicious file type [application/x-c]

      plugins/types/library/twig/twig/ext/twig/twig.c

    – Suspicious file type [application/x-c]

    How I can check if these files are compromised or its a false positive report?
    Thanks in advance for your help!

    https://ww.wp.xz.cn/plugins/types/

Viewing 2 replies - 1 through 2 (of 2 total)
  • Anonymous User 14808221

    (@anonymized-14808221)

    9 years, 10 months ago

    The simplest is delete the Plugin from your FTP and download it again from the WordPress Plugin repository.

    Then upload it to your FTP and activate it again.

    No data is lost as all is stored in the DataBase.

    Nonetheless make a full backup before you proceed.

    Thread Starter danc77

    (@danc77)

    9 years, 10 months ago

    Thank you!

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Issue with possibly compromised files after hack attack’ is closed to new replies.