Files with “._” prefeix

  • Resolved puntod

    (@puntod)


    2 years, 2 months ago

    I scanned the webpage with wordfence and I have a list of over 2000 files with the prefix ‘._’ .

    For example: httpdocs/wp-includes/widgets/._class-wp-widget-archives.php

    The message related to these files is: This file is in a WordPress core location but is not distributed with this version of WordPress. This scan often includes files left over from a previous WordPress version, but it may also find files added by another plugin, files added by your host, or malicious files added by an attacker.

    I am not sure what to.

    Thanks!

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @puntod, thanks for your message!

    Ultimately the reason why they’re being flagged is because it’s normally a good sign your WordPress installation has been maliciously altered if the core WordPress folder contents are different to how they appear on the www.remarpro.com repository.

    However, sometimes artefacts from an operating system, backup or cache can show up. I believe “._” files to be created (usually on a Mac) to store information about files in a location. It’s most common for these to appear because a site has been developed in a local environment, then migrated to a live server.

    My advice would be to take a full site backup just in case anything goes wrong, and remove the “._” files being flagged as they aren’t required on your live site. If you can be sure they were created in the way described above, you could choose to ignore them for future scans.

    Thanks,
    Peter.

    Thread Starter puntod

    (@puntod)

    Thanks! Yes, it was migrated from a local server, from my Mac.

    Plugin Support wfpeter

    (@wfpeter)

    Great news, you should be safe to ignore or delete them @puntod

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Files with “._” prefeix’ is closed to new replies.