WordPress.org

Ready to get started?Download WordPress

Forums

Wordfence Security
[resolved] Malicious file warning (2 posts)

  1. SheilaT
    Member
    Posted 1 year ago #

    Our web host suspended our sites due to a malicious file warning (see below). We received no warning from Wordfence. This occurred immediately after we did a recommended update last night to the Wordfence plugin (at about 11pm PT on August 28, 2012).

    Malicious file(s) warning:
    ***/wp-content/plugins/wordfence/lib/wordfenceScanner.php => /usr/local/maldetect/quarantine/wordfenceScanner.php.25782

    Not being very technically literate, as soon as they allowed us local access, I didn't know what else to do other than delete the entire plugin. (I tried to locate the problem files first, but no luck. ) Problem seems to be solved -- I've since confirmed with http://sitecheck.sucuri.net/scanner/ and I get the A-OK.

    http://wordpress.org/extend/plugins/wordfence/

  2. Wordfence
    Member
    Plugin Author

    Posted 1 year ago #

    Hi Sheila,

    This is probably a false positive from your host because wordfenceScanner.php contains detection code for malicious files, so their scanner probably got confused and thought it was itself a malicious file.

    You can email me the quarrantined file if you like, but I'm pretty sure it's our source code and a false positive from your provider. My email is mark@wordfence.com.

    Regards,

    Mark.

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic