making sure it is safe to delete a file

Hi,
I have support access on for http://bnmprojects.info/topper

Defender found the following file and I want to make sure it's safe to delete it.

phpQuery.php /home/bnmpro5/public_html/toppersautoservices/wp-content/plugins/LayerSlider/helpers/phpQuery.php

Can you please take a look?

  • Kris Tomczyk

    Hi cornelius_butler

    Hope you are doing good today.

    It is not safe to delete any file from WP core or plugin core.
    At first you need to check what code is suspicious in this file, does it is a part of original code of plugin.

    In many cases during the hacker attack he add some additional code.
    From what I check in this file the suspicious code marked by Defender is php function preg_replace_callback:

    $content = preg_replace_callback(
    			'@<php>\s*<!--(.*?)-->\s*</php>@s',
    //			create_function('$m',
    //				'return "<'.'?php ".htmlspecialchars_decode($m[1])." ?'.'>";'
    //			),
    			array('phpQuery', '_markupToPHPCallback'),
    			$content
    		);

    Please compare this file on ftp
    /wp-content/plugins/LayerSlider/helpers/phpQuery.php
    with the original file from this plugin. As this is a third party paid software, we don't have access to
    original code of this plugin.

    Also you can contact with plugin author and clarify this case, if they confirm that this is correct you can simply ignore this notice.

    Kind Regards,
    Kris

Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.