• Resolved PL


    I have the Sucuri Plugin and have been getting these Sucuri Alert Core Integrity Check emails everyday for the last two weeks. Does this look like normal activity? I am not adding these files.


    Changes in the integrity of your core files were detected, you may want to check each file to determine if they were infected with malicious code. The WordPress core directories /<root>, /wp-admin and /wp-includes are the only ones being scanned; the content, uploads, and custom directories are not part of the official archives so you have to check them manually.

    Core integrity (4 files)
    Status File Size Modified At File Path
    added ~3.14K August 1, 2013 6:54 am default.htm
    added ~39.81K November 3, 2016 1:05 am php_mail.log
    added ~96.00B September 22, 2016 1:19 pm wp-admin/php_errorlog
    added ~34.10K November 1, 2016 1:35 pm wp-admin/php_mail.log

    Note: This is not a malware scanner but an integrity checker, if you want to check if your site is generating malicious code then use the malware scan tool. If you see the text “must be fixed manually” in any of these files that means that they do not have write permissions so you can not fix them using this tool. Access the admin area of your website to fix these files.

    Note: Disable the “Receive email alerts for core integrity checks” option from the “Alerts” panel located in the plugin’ settings page to stop receiving these emails, but keep an eye on the flagged files to keep your website clean.

Viewing 1 replies (of 1 total)
  • Plugin Author Daniel Cid


    These are log files that are constantly changing, so seems ok.

    To be on the safe side, I would recommend to look at their content and if you don’t see anything malicious, just ignore them for the integrity check changes.


Viewing 1 replies (of 1 total)
  • The topic ‘Core Integrity Checks’ is closed to new replies.