Just finished scanning my site with the Wordfence plugin and received the following message:
File appears to be malicious: wp-content/themes/evolve-plus/library/admin/redux-extensions/extensions/vendor_support/vendor/ace_editor/mode-php.js
Filename: wp-content/themes/evolve-plus/library/admin/redux-extensions/extensions/vendor_support/vendor/ace_editor/mode-php.js
File type: Not a core, theme or plugin file.
Issue first detected: 1 min ago.
Severity: Critical
Status New
This file appears to be installed by a hacker to perform malicious activity. If you know about this file you can choose to ignore it to exclude it from future scans. The text we found in this file that matches a known malicious file is: "EvalError|InternalError|RangeError|ReferenceError|StopIteration|SyntaxError|TypeError|URIError|decodeURI|decodeURIComponent|encodeURI|encodeURIComponent|eval|isFinite|isNaN|parseFloat|parseInt|JSON|Ma...".
The infection type is: Suspicious eval with base64 decode.