Deleting malicious file

  • Resolved andyandy

    (@androidandreas)


    3 months, 2 weeks ago

    Wordfence has reported a High Risk issue with a malicous file in a a file withuin thi spage.

    How can I deal with it? Is it possible to quaerantine or do I need the Premium version?

    Can I just delete it?

    Or is there some other way?

    The page I need help with: [log in to see the link]

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @androidandreas,

    What is the precise message you’re seeing and in relation to which of the filenames? Is it just from site scans or also when attempting to upload or view the file in a browser? I followed the link and saw the carousel of images, so I will note that PDF or image files can easily match malicious PHP code patterns such as?<??when viewed as text, causing a false-positive, so could be ignored directly from the scan results page in Wordfence if you uploaded the file yourself and you know it’s not malicious.

    Thanks,
    Peter.

    Thread Starter andyandy

    (@androidandreas)

    Hi Peter

    Thanks for your reply.

    The error message is simply:

    “Critical Problems:

    * File appears to be malicious or unsafe”.

    The full filebane is as follows:

    wp-content/boost-cache/cache/[myname].com/east-kent-mercury-cricket-world-cup/68e7bda3bf0540bbcb4eaed73e14e98a.html.rebuild.html

    Yes I did upload it myself. Do you think it is defiitely false positive? Ia m pretty sure it is not malicious.

    n.b As you can see I have anonymised my name in this link but it is of course in the post link in the original post.

    Plugin Support wfpeter

    (@wfpeter)

    Hi @androidandreas,

    I do believe it is a false-positive based on what you’ve said and you recognize the file yourself.

    Some customers choose to exclude cached versions of their pages entirely from scans for reasons such as this, or just for generally speeding up a Wordfence scan. In?Wordfence > All Options > Scan Options > Advanced Scan Options > Exclude files from scan that match these wildcard patterns?you could add?wp-content/boost-cache/cache/*?or?wp-content/boost-cache/*?depending on whether any detected files are outside of the “cache” folder.

    Thanks again,
    Peter.

    Thread Starter andyandy

    (@androidandreas)

    Great, thanks.

Viewing 4 replies - 1 through 4 (of 4 total)
  • You must be logged in to reply to this topic.