Ibetph88 register bonus,Jili 8989 withdrawal.Recharge Every day and Get Bonus up-to 50%!

Resolved debbietechforceonsite
(@debbietechforceonsite)

4 years, 8 months ago

I am getting the following this scan alert on one of my websites:

Filename: wp-content/plugins/wordfence/lib/wfScanEngine.php
File Type: Not a core, theme, or plugin file from www.ads-software.com.

Details: This file appears to be installed or modified by a hacker to perform malicious activity. If you know about this file you can choose to ignore it to exclude it from future scans. The matched text in this file is: if (method_exists(“wordfenceHash”, “wfHash”) && count($hash = @wordfenceHash

The issue type is: Suspicious:PHP/hidefromwf.5494
Description: Modified file to hide code from malware scans.

I tried deleting the file, but that disabled my site so I restored the file from a back up. How should I fix this file?

Thank you
Debbie Mason

The page I need help with: [log in to see the link]

Viewing 6 replies - 1 through 6 (of 6 total)

WFGerroald
(@wfgerald)

4 years, 8 months ago

Hey @debbietechforceonsite,

Can you please share the file in a pastebin.com so we can review it?

Please let me know.

Thanks,

Gerroald

Thread Starter debbietechforceonsite
(@debbietechforceonsite)

4 years, 8 months ago

Thank you for a response, here it is:

https://pastebin.com/mhBXuFCe

At least I believe this is what you are requesting. Just let me know if you need something else.

Thank you

Debbie

Thread Starter debbietechforceonsite
(@debbietechforceonsite)

4 years, 8 months ago

Could someone from WordFence please assist me with this issue. This is continuing to happen, with every scan.
Thank you
Debbie

WFGerroald
(@wfgerald)

4 years, 8 months ago

Hey @debbietechforceonsite,

What version of Wordfence are you using?

Can you please try completely resetting Wordfence and let me know if it helps?

https://www.wordfence.com/help/advanced/remove-or-reset/#remove-or-reset

If it does help, it may be the result of a compromise. At that point, I’d suggest updating all passwords including WordPress, sFTP, database, and hosting control panel. The guide below can help walk you through on how to clean the site. However, if the infection returns or you’re not comfortable with this I’d suggest reaching out to a professional hack repair service.

Please let me know how it goes.

Thanks,

Gerroald

Thread Starter debbietechforceonsite
(@debbietechforceonsite)

4 years, 8 months ago

Thank you. I will try your suggestions (although I’ve already done both). By the way, you did not include a link to the guide you referenced for instructions to clean the site.

Debbie

WFGerroald
(@wfgerald)

4 years, 8 months ago

Hey @debbietechforceonsite,

My apologies, I did miss adding the link to the guide.

https://www.wordfence.com/docs/how-to-clean-a-hacked-wordpress-site-using-wordfence/

Please let us know how it goes.

Thanks,

Gerroald

Viewing 6 replies - 1 through 6 (of 6 total)

The topic ‘Error on scan: wp-content/plugins/wordfence/lib/wfScanEngine.php’ is closed to new replies.