Describe the issue or problem
Hello
We are using OJS 3.3.0-13
Our hosting company has scanned our site and found the following files:
/home/datafoldername/contexts/1/library/lae-MAR.php
/home/niphc0/perl5/datafoldername/contexts/1/library/shell-PER.phtml
/home/niphc0/datafoldername/contexts/1/library/test-REP.phtml
Are those files malware?
Can I delete them?
I appreciate any help you can provide.
Carlos
Hi @ckiyan,
Those directories don’t appear to be OJS specific directories. Can you elaborate on how those directories relate to your OJS install?
-Roger
PKP Team
Hi @ckiyan,
It is likely that you have malicious users testing your installation to see whether you have placed your files directory somewhere web-accessible. It appears you haven’t, so there is no way for them to invoke the script and cause trouble. You can remove those files if you like.
Regards,
Alec Smecher
Public Knowledge Project Team