Plugin Support
qtwrk
(@qtwrk)
Hi,
Could you please provide more information ?
Best regards,
Hello, thanks for the feedback. Several requests are being made for files in the /wp-content/litespeed/cssjs/daa5d.js changing only the .js file name.
There have been over 3000 requests today. I believe that some script is working on the site via the LiteSpeed plugin. A copy of the W3 Total Cache plugin files is made in the root folder of my hosting, I believe to confuse it because it is cache routines. I have never installed the W3 Total Cache plugin, only LiteSpeed. I am available to provide any information that may help.
One more piece of information, when I disable and remove the plugin it appears installed and active again on my website after some time.
Plugin Support
qtwrk
(@qtwrk)
Hi,
That file is generated by JS optimization feature , and each time you purge cache , it will be re-generated , and changing name.
hmmmmm, you mean you didn’t install W3TC , but it appear up in your site ? perhaps you should check with your provider if they installed it for you ?
Best regards,
Hello, I’ve checked with the provider, it wasn’t them. Why are the attacks concentrated on these files? Today, more than 300 attempts have been classified as “lockout”.
Thank you!
Plugin Support
qtwrk
(@qtwrk)
Hi,
I am not sure what do you mean by “lockout” ? like request denied ?
is there any completed log ?
maybe you are under (D)DoS attack , if that file not exist, it will hit WP 404 page, in which , it consumes resources to process 404 page.
Best regards,
Hello, I believe that’s it. I just wanted to inform you that the plugin is being targeted by this type of attack, perhaps a vulnerability?
Thank you for your attention!
Plugin Support
qtwrk
(@qtwrk)
Hi,
Thank you for your info , I will pass this to our dev
Best regards,
