Support » Plugin: Wordfence Security - Firewall & Malware Scan » Scan missing dodgy db entries

  • Resolved alanjacobs


    I am running the wordfence scanner with High Sensitivity and all options ticked.
    This runs but finds no issues.

    However if I do a manual search of my DB for say “viagra” I see hundreds of hits.
    My site appears to have been infected with a js_malware.

    So why would Wordfence not pick this up?

    Can the scan be modified to do a simple search of the DB for suspect terms ( rather than full URLS perhaps, or in addition to ).


Viewing 1 replies (of 1 total)
  • WFGerroald


    Hey @alanjacobs,

    I’m sorry to hear you have run into this, thanks for sharing it. I’ll share this with the team, and file a feature request.

    In the meantime, I’d suggest updating all passwords including WordPress, sFTP, database, and hosting control paeel. The guide below may help you clean the site. However, if the infection returns or you aren’t comfortable doing this I’d suggest reaching out to a professional hack repair service.



Viewing 1 replies (of 1 total)
  • The topic ‘Scan missing dodgy db entries’ is closed to new replies.