Unknown file in WordPress core

  • Resolved lunallycha

    (@lunallycha)


    4 years, 2 months ago

    I’ve just installed Wordfence and during the first scan I got this: “Unknown file in WordPress core: wp-admin/css/colors/blue/php.ini (+ 217 more)”

    I’m new to wordpress and have no idea what this could be and how to know if it’s a malware or not, and how to fix it. My hosting provider is 1&1 ionos. Apparently a few people have had the same issue but I couldn’t find a solution.

    The last time the file was modified happens to be the exact time and date I created the website which makes me think it could have something to do with Ionos.

    These are the details of the file:

    Filename: /homepages/1/d792669571/htdocs/clickandbuilds/CharlotteSPhotography/wp-admin/css/colors/blue/php.ini
    File Size: 483 bytes
    File last modified: Sunday 19th of December 2021 03:32:09 AM
    safe_mode=false;
    upload_max_filesize=128M;
    post_max_size=128M;
    memory_limit=1024M;
    zend_extension=opcache.so;
    opcache.enable=1;
    opcache.memory_consumption=64;
    opcache.interned_strings_buffer=8;
    opcache.max_accelerated_files=5000;
    opcache.revalidate_freq=180;
    opcache.fast_shutdown=0;
    opcache.enable_cli=0;
    opcache.revalidate_path=0;
    opcache.validate_timestamps=2;
    opcache.max_file_size=0;
    opcache.file_cache=/kunden/homepages/1/d792669571/htdocs/.opcache;
    opcache.file_cache_only=1;`

Viewing 2 replies - 1 through 2 (of 2 total)
  • Anonymous User 17880307

    (@anonymized-17880307)

    4 years, 2 months ago

    Yes this is from IONOS and their solution to apply php.ini changes to all subfolders. If they would setup their systems the correct way they would only need a php.ini or .user.ini file at the root of the website and not in all folders.

    Plugin Support wfpeter

    (@wfpeter)

    4 years, 2 months ago

    Hi @lunallycha,

    Thanks for getting in touch. I had not seen this reported before last week but believe @danielrufde is likely correct due to this topic (1 year 8 months old at time of writing): https://ww.wp.xz.cn/support/topic/alert-files-wp-admin-css-colors-blue-php-ini/

    It appears that the click & build WordPress installation from IONOS does cause these files to be created. This is not ideal as the folders should be left unchanged, hence why Wordfence is flagging their presence. You can choose to ignore these for future scans if your host is unable to change how WordPress is installed.

    Thanks,

    Peter.

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Unknown file in WordPress core’ is closed to new replies.