Warning from Wordfence

  • Resolved bhamwebdesign

    (@bhamwebdesign)


    7 years, 7 months ago

    My last Wordfence scan detected changes in my analytics file. It looks like Google search console may have picked it up as well. I’m getting a malware warning from Search Console dated about the same time that Wordfence picked up a change. However Search Console doesn’t show me which file it suspects, so I can;t confirm that. More info below as well as my web address: https://bhamwebdesign.com

    This is what Wordfence is telling me:
    Modified plugin file: wp-content/plugins/host-analyticsjs-local/cache/local-ga.js
    Filename: wp-content/plugins/host-analyticsjs-local/cache/local-ga.js
    File Type: Plugin
    Issue First Detected: 25 mins ago.
    Severity: Warning
    Status New
    This file belongs to plugin “Complete Analytics Optimization Suite (CAOS)” version “1.44” and has been modified from the file that is distributed by www.remarpro.com for this version. Please use the link to see how the file has changed. If you have modified this file yourself, you can safely ignore this warning. If you see a lot of changed files in a plugin that have been made by the author, then try uninstalling and reinstalling the plugin to force an upgrade. Doing this is a workaround for plugin authors who don’t manage their code correctly. [See our FAQ on https://www.wordfence.com for more info]

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author DaanvandenBergh

    (@daanvandenbergh)

    Thanks for notifying me about it, although the notification makes sense.

    The downloaded analytics.js-file (renamed to local-ga.js to have a clear difference) is located inside a (my) plugin’s directory, but is changed/updated on a daily basis by the scheduled cronjob, which is added by the plugin.

    WordFence detects this as a code-change, without detecting an update of the plugin. But, it’s expected behavior. Actually, it means that the plugin is doing what he should do ??

    In other words, you can ignore this.

    Plugin Author DaanvandenBergh

    (@daanvandenbergh)

    Oh, I read past the Search Console-part. If that’s the case then you might be hacked and you should check into it.

    It has nothing to with (the coding of) CAOS, though.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Warning from Wordfence’ is closed to new replies.

Tags