Support » Plugin: Sucuri Security - Auditing, Malware Scanner and Security Hardening » Sucuri file containing “eval( $tempb64 ); exit(” malicious?

  • Resolved gordonblackler

    (@gordonblackler)


    A routine scan by Wordfence has flagged up a file that it considers malicious. The file appeared in my root folder and is called sucuri-0d4bf4d7b29158b5fd7d3e0ff6b09928.php and it contains the following lines:

    /* Sucuri integrity monitor
    * Integrity checking and server side scanning.

    followed by some encrypted code.

    Wordfence includes the following message:

    … The text we found in this file that matches a known malicious file is: “eval( $tempb64 ); exit(“. The infection type is: Eval of code followed by exit..

    Should I remove this file or is it needed by the Sucuri Scanner plugin? Thanks

Viewing 1 replies (of 1 total)
  • Plugin Author Daniel Cid

    (@ddsucurinet)

    That file is used by our Server-Side scanner (paid service), so you need to keep it in there for it to work.

    *Note that it is not used or related to the WordPress plugin.

    thanks!

Viewing 1 replies (of 1 total)
  • The topic ‘Sucuri file containing “eval( $tempb64 ); exit(” malicious?’ is closed to new replies.