WordPress.org

Forums

Theme Check
[resolved] File contains suspected malware (6 posts)

  1. underclass
    Member
    Posted 1 year ago #

    wordfence is issuing the following errors since the update to theme check;

    File contains suspected malware URL:
    /wp-content/plugins/theme-check/lang/theme-check.pot
    /wp-content/plugins/theme-check/checks/worms.php

    This file contains a suspected malware URL listed on Google's list of malware sites. Wordfence decodes base64 when scanning files so the URL may not be visible if you view this file. The URL is: http://creativebriefing.com/wordpress-hacked-googlerankinfo/%5C - More info available at Google Safe Browsing diagnostic page.

    http://wordpress.org/plugins/theme-check/

  2. beggers
    Member
    Posted 1 year ago #

    Same thing here. I just deleted the plugin and its files.

  3. Samuel Wood (Otto)
    Tech Ninja
    Plugin Author

    Posted 1 year ago #

    Hah. VaultPress told me the same thing.

    The "worms.php" file does not contain any malware. Quite the opposite, in fact. It contains a few checks with some known malware signatures, and it's using those to check themes for that same malware. The theme-check.pot file contains some of those strings as well.

    This is a false positive. Theme Check is fine. Wordfence is incorrect.

  4. Maarten
    Member
    Posted 1 year ago #

    Thanks Otto!

  5. lukehayden
    Member
    Posted 5 months ago #

    Hi,

    I use Wordfence on my website and I just got an email saying
    "File contains suspected malware URL: /home2/lukehay1/public_html/wp-content/themes/imbalance/single.php"

    Any idea how to resolve this?

    Many thanks

  6. Samuel Wood (Otto)
    Tech Ninja
    Plugin Author

    Posted 5 months ago #

    lukehayden: Ask the people at Wordfence. This thread is for another plugin entirely.

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags