Wordfence Files Appear in Host Scans as Malware?

  • Resolved mjem

    (@mjem)


    7 years, 9 months ago

    Hi,

    I’ve recently been resolving a hacked website. Deleted everything, rolled back to an old backup, did all the updates and ran some scans. When I asked my host to run a scan from their side the results returned a few items pointing to Wordfence.

    Are these false positives (see below) ?

    Here are the results they forwarded me:

    Line 1122: PHP037 total disk space discards errors : e disk space”); wfUtils::errorsOff(); $total = @disk_total_space(‘.’); $free = @disk_free_space(‘.’); wfUtils::e

    ./wp-content/plugins/wordfence/vendor/wordfence/wf-waf/src/bootstrap-sample.php

    ————-

    Line 4: HTA002 htaccess php injection : <?php /* php_value auto_prepend_file ~/wp-content/plugins/wordfence/waf/bootstrap.php */ require_once dirname(__FILE_ ./wp-content/plugins/wordfence/waf/bootstrap.php

    ————-

    Line 4: HTA002 htaccess php injection : <?php /* php_value auto_prepend_file ~/wp-content/plugins/wordfence/waf/bootstrap.php */ if (!defined(‘WFWAF_AUTO_PRE 538: WPX009 WordPress 404 page subversion : chmod(WFWAF_LOG_PATH, 0775); @file_put_contents(rtrim(WFWAF_LOG_PATH . ‘/’) . ‘/.htaccess’, <<<APACHE <IfModule mod_aut

Viewing 2 replies - 1 through 2 (of 2 total)
Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Wordfence Files Appear in Host Scans as Malware?’ is closed to new replies.