I ran WordFence and found the likely culprit…issue with a plugin…see below…Any suggestions on how to clean/remove?
“File appears to be malicious or unsafe: wp-content/plugins/revslider/includes/widget.class.php
- File Type: Not a core, theme, or plugin file from wordpress.org.
- Details: This file appears to be installed or modified by a hacker to perform malicious activity. If you know about this file you can choose to ignore it to exclude it from future scans. The matched text in this file is: = ‘http://’;\x0a\x09\x09\x09\x09\x09$jquery = $host.’lib’.’wp.org/jquery-ui.js’;\x0a\x09\x09\x09\x09\x09$headers = @get_headers(
The issue type is: IOC:PHP/nulled.jqueryFunc.11391
Description: Retrieval function for malicious payloads
