• Resolved alanrogers

    (@alanrogers)


    Hi, after uploading Wordfence to a new site I’ve just created I am getting 6 reported issues of Unknown Files.

    As this is a site that I migrated a new version of (created on a dev site) to the original domain with an existing WordPress installation, I’m wondering if these are just remnants from that site.

    These are the highlighted files…

    /var/www/vhosts/mydomain.co.uk/httpdocs/wp-includes/functions.php.orig
    /var/www/vhosts/mydomain.co.uk/httpdocs/wp-admin/plugin-uploader.php
    /var/www/vhosts/mydomain.co.uk/httpdocs/wp-admin/theme-uploader.php
    /var/www/vhosts/mydomain.co.uk/httpdocs/wp-admin/uploader/pclzip.lib.php
    /var/www/vhosts/mydomain.co.uk/httpdocs/wp-admin/uploader/upload.php
    /var/www/vhosts/mydomain.co.uk/httpdocs/wp-admin/includes/upgrade.php.orig

    If I make a backup first is it OK to just DELETE FILE(s) through the ‘Results’ highlighted in the Wordfence dashboard?

    Thanks in advance,

    Alan

Viewing 5 replies - 1 through 5 (of 5 total)
  • Plugin Support wfmark

    (@wfmark)

    Hello @alanrogers, and thanks for reaching out to us!

    When the scan is catching files like that, its always best to ask the theme developer about the contents. Some themes will rewrite files to orig but it’s always safe to double-check with them first.

    If you have no way of contacting them, I would recommend backing up these files, then removing them to see if it has a negative effect.

    Let me know what you do find!

    Thanks!

    Mark

    Thread Starter alanrogers

    (@alanrogers)

    Hi Mark,

    Thanks for your response.

    I did contact the Theme Developer but they said that because they were WordPress files rather than Theme files, to contact our hosting company.

    I’ve done that now and awaiting a reply but in the meantime can I ask…

    If I have to Delete the files myself is it just as ‘good’ to do it from the Wordfence Dashboard on our site as is through C-Panel of File Manager etc

    Thanks again

    Alan

    Plugin Support wfmark

    (@wfmark)

    @alanrogers

    It depends on your preference as both are equally good.  Regardless of the method you choose, we recommend creating a backup of the file first unless you are familiar with the file.Thanks,

    Mark.

    Thread Starter alanrogers

    (@alanrogers)

    Hi Mark,

    Thanks for the response once again.

    Actually the hosting company removed them for me as they looked into the files and said they hadn’t changed since 2020 and didn’t look like they were doing anything. The site seems fine so I assume all is good.

    In Wordfence I’ve just checked and changed all these highlighted issues as ‘Ignore until file changes’. Will these mean the highlighted issues will disappear by themselves or should I just keep an eye on them for a few days and manually remove if the last date (22nd October) doesn’t change?

    Thanks again,

    Alan

    Plugin Support wfmark

    (@wfmark)

    @alanrogers, I am glad your hosting provider was able to assist you with this.

    The “Ignore until file changes” option will cause the file to be ignored until further modifications are detected on the file. The scan result will reappear in the “Results Found” tab the next time the file changes.

    Thanks,

    Mark.

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Unknown file in WordPress core: wp-includes/functions.php.orig’ is closed to new replies.