Hi Guys,
I was wondering if someone could shed some light,
So our community manager told us they got alot of 404 on the google search engine, and we see URL
like this attaching picture,
​
https://preview.redd.it/3nsm225jf7jc1.png?width=1688&format=png&auto=webp&s=5e4c0c1ee668f00b7a861e0a1fc1defaf2dad548
​
steps i took
​
1) i reinstall wordpress, deleted the whole html folder, copy the wp-content and paste it back in the new wordpress folder
​
2) check all .httaccess didnt find anything odd and index.php everything fine
​
3) ran wordfence scan didnt find anything
​
4) ran GOTML plugin didnt find anything
​
5) ran [https://github.com/marcocesarato/PHP-Antimalware-Scanner](https://github.com/marcocesarato/PHP-Antimalware-Scanner) didnt find anything
​
6) I currently use SWAG as reverse proxy, with crowdsec which normally i have few other dozen websites working fine
​
so my conclusion is that the wordpress is not infected
So why the google bots looking for that phpfile?
​
i looked in the internet for that file and found this website that has that file also
​
[http://remoworldeg.com/](http://remoworldeg.com/)​
i also checked in the db didnt find anything either only the part of the rank math 404 logs which is a plugin to point out the 404 issues
​
i deleted that but keep comming in
​
really out of ideas
​
https://preview.redd.it/jbao1r7hf7jc1.png?width=1444&format=png&auto=webp&s=6cad56ffcaa38d312936f6bc3ce4257f0ebcbd35
Thanks
[ad_2]
There’s likely nothing wrong on your end – Google’s bot is just following links. You need to look at the `referer` header to know where Google bot is coming from. Tell your IT guy to enable it in the logging.