wp-task flagged as suspicious

  • Resolved jgold723

    (@jgold723)


    7 years, 3 months ago

    Wordfence has flagged a file in my installation as suspicious: wp-task.php. It’s in the root directory with the rest of the WordPress core files. It was installed at the beginning of the the year, along with several other files that appear to be part of the standard WordPress installation.

    The file doesn’t appear to be part of the basic WordPress install, but removing it causes the site to crash (I get an error indicating the file is needed).

    I have been using Wordfence for many months and this is the first time the file has been flagged. The installation is regularly updated.

    Is this indeed a suspicious file? Is it possibly part of a plugin?

    The page I need help with: [log in to see the link]

Viewing 2 replies - 1 through 2 (of 2 total)
  • Thread Starter jgold723

    (@jgold723)

    A quick follow up — There was a line in index.php that requested the file:

    require(dirname(__FILE__).’/wp-task.php’);

    Nothing that I had put in there. I guessing this is not a standard WordPress item?

    I’ve removed that line and also wp-task, but I’m still interested to see if anyone has any background on this.

    Hi @jgold723,

    Indeed the file doesn’t appear to be part of the basic WordPress install.

    What most likely happened is that it was added there as part of an attack and the index.php was tampered with.

    The steps you took (removing the line in index.php and deleting the wp-task.php file) seem appropriate.

    Feel free to send the file to samples@wordfence so we can try and look into it.
    I can’t guarantee we’ll be able to analyze the file but for now I suggest check the integrity of your site.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘wp-task flagged as suspicious’ is closed to new replies.