Wordfence Security
[resolved] Malicious file warning (2 posts)

  1. SheilaT
    Posted 3 years ago #

    Our web host suspended our sites due to a malicious file warning (see below). We received no warning from Wordfence. This occurred immediately after we did a recommended update last night to the Wordfence plugin (at about 11pm PT on August 28, 2012).

    Malicious file(s) warning:
    ***/wp-content/plugins/wordfence/lib/wordfenceScanner.php => /usr/local/maldetect/quarantine/wordfenceScanner.php.25782

    Not being very technically literate, as soon as they allowed us local access, I didn't know what else to do other than delete the entire plugin. (I tried to locate the problem files first, but no luck. ) Problem seems to be solved -- I've since confirmed with http://sitecheck.sucuri.net/scanner/ and I get the A-OK.


  2. Wordfence
    Plugin Author

    Posted 3 years ago #

    Hi Sheila,

    This is probably a false positive from your host because wordfenceScanner.php contains detection code for malicious files, so their scanner probably got confused and thought it was itself a malicious file.

    You can email me the quarrantined file if you like, but I'm pretty sure it's our source code and a false positive from your provider. My email is mark@wordfence.com.



Topic Closed

This topic has been closed to new replies.

About this Plugin

  • Wordfence Security
  • Frequently Asked Questions
  • Support Threads
  • Reviews

About this Topic