Strange characters in attack-data.php | WordPress.org

Resolved weareglass
(@weareglass)

6 years, 10 months ago

Our site was down last night in what might have been some routine WP database error, but while restoring the site I noticed that the file attack-data.php had been updated during the attack and had some strange characters. I see from other threads that Wordfence regularly updates these log files so I’m hoping this is nothing but I’d like to double check. My file contains one PHP command and then a lot of gibberish, which looks a little like code that found its way onto our site when we had been hacked in the past. Here’s a screenshot:

https://take.ms/kcm70

Does this file normally look like this? Thanks.

Viewing 1 replies (of 1 total)

Plugin Support wfscott
(@wfscott)

6 years, 9 months ago

Depending what you use to open the attack-data file you may see a warning showing the file is encoded or using a different/unsupported text encoding and you will likely see similar results as to what you’re seeing there.

Viewing 1 replies (of 1 total)

The topic ‘Strange characters in attack-data.php’ is closed to new replies.

1 reply
2 participants
Last reply from: wfscott
Last activity: 6 years, 9 months ago
Status: resolved