Possible false positive malware detection | WordPress.org

Resolved tomdkat
(@tomdkat)

8 years, 7 months ago
Hi! I’m running NinjaFirewall 3.5.2 and the anti-malware scanner detected a BulletProof security file as being malware:
```
1-{HEX}base64.reversed.1: /home/{blah}/public_html/blog/wp-content/plugins/bulletproof-security/includes/mscan-ajax-functions.php
```
I have BulletProof 2.5 installed. Is this something you can look into?

Thanks!

Viewing 3 replies - 1 through 3 (of 3 total)

Plugin Author nintechnet
(@nintechnet)

8 years, 7 months ago

Hi,

It seems other scanners are flagging it too: https://wordpress.org/support/topic/vaultpress-flagging-bps-file/

I looked at the code and it contains hardcoded malware/backdoor patterns: https://plugins.trac.wordpress.org/browser/bulletproof-security/trunk/includes/mscan-ajax-functions.php#L961

That’s indeed a false positive but there isn’t much I can do: when you scan a security app with another security app, you will likely end up with a couple of false positive issues 🙂

You can safely ignore this warning (you may consider whitelistening its folder using the “Ignore files/folders” option).

Thread Starter tomdkat
(@tomdkat)

8 years, 7 months ago

Thanks for the info!

Thread Starter tomdkat
(@tomdkat)

8 years, 7 months ago

Thanks for the information!

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Possible false positive malware detection’ is closed to new replies.

3 replies
2 participants
Last reply from: tomdkat
Last activity: 8 years, 7 months ago
Status: resolved