LMD99
Forum Replies Created
-
The hosting admins can access the Wordfence tabs (even the Scan tab) in the WP CP without issue – but they use a different ISP than I.
Thinking it’s an ISP issue, I called my ISP support. They say if it’s a page internal to WordPress and it’s a plugin, that its out of their hands and to contact the plugin author. Or, they said, call Microsoft for help.
- This reply was modified 8 years, 1 month ago by LMD99.
Thanks for your response.
I’ve tested this on two different machines, cleared cache, and tried three browsers and get the same error for this one site. I’m not on a VPN either.
Firstly, I know if talk to our hosting support on this, they’ll ask if any other sites are getting that error, and I’ll have to say no.
Secondly, WordPress isn’t a one-click install where we are either. So, they don’t support third party apps, like WordPress. They usually do try to help with WordPress to some degree, but until they offer the one-click install, they’ll only go so far.
Finally, they’ll say if it works on my other 15 sites, it should work on this site too. And, I should contact the plugin support.
And the circle begins again.
Alright, I’ll try them, but the error message won’t mean anything to them, correct, as even the support ID is a WordFence reference/error, correct?
BTW – who am I supposed to notify of this part of the error message?
Your support ID is: 9641638101926928756
I’ve got more than a dozen sites hosted on the same server, and scanning any of those sites doesn’t produce any errors.
I see the reference, and yes, a comment it is.
I’ve removed the “high sensitivity” function, and no issues are found now.
Thanks all for your help to resolve.
- This reply was modified 8 years, 2 months ago by LMD99.
I think you are right about the “sensitivity”. I’ve disabled “high sensitivity”, and performing another scan to see if it pops up again as a malicious file. Odd about the code reference to an instance of “eval” without quotes though…
ˉ\_(ツ)_/ˉ
This is the first and only instance of this warning I’ve received with over 20 WordPress sites I manage. That fact, in itself, doesn’t give me a good feeling. Well, let’s see if anyone else or the plugin author chimes-in.
Screen snap link:
Ugh. I’m managing so many domains at this point I can’t remember which were the two that produced the error. I’m going through them all in the next day or two, and should be able to replicate the error. If not, it could have been a temporary anomaly.
I’ll leave this thread open for a bit while I try and replicate the issue.
Sorry to bump – but I found another client using the WF plugin and am getting the same error and am getting a little worried that something is wrong on these sites.
Does anyone know anything about this error, or should I just delete the plugin from the sites where the plugin is generating this error?
Sorry, I don’t understand the point about “re-open the IGW modal window”.
I’m also finding potential issues with when scanning outside the WP environment. The scan is coming up with this file as being “malicious”: phpmyadmin/libraries/Config.class.php
“This file is a PHP executable file and contains the word ‘eval’ (without quotes) and the word ‘unpack(‘ (without quotes). The eval() function along with an encoding function like the one mentioned are commonly used by hackers to hide their code. If you know about this file you can choose to ignore it to exclude it from future scans. “
Are you aware of this being a false positive? Or, is this an issue?
Interesting that Wordfence classified the change as something I can’t remember exactly: “critical”?
No – 4.4.2. It was highlighted in a Wordfence scan. And, there has been a bit of trouble with access to the domain in question. It’s all been cleared up, but still a bit paranoid – especially when I saw the results of the scan.
ˉ\_(ツ)_/ˉ
Sorry – the first file was wp-login.php
Add – there are a couple other files that were modified as well:
wp-includes/bookmark.php
wp-includes/ID3/getid3.lib.phpDouble sorry – didn’t see the edit link.