Make WordPress Core

Opened 4 years ago

Closed 4 years ago

Last modified 4 years ago

#50818 closed defect (bug) (invalid)

phP/Agent.NGW and phP/Agent.NJJ detected on some files by ESET32

Reported by: wretana's profile wretana Owned by:
Milestone: Priority: normal
Severity: critical Version: 5.4.2
Component: Security Keywords:
Focuses: Cc:


Please refer to Ticket Ref #43726

I have issues with phP/Agent.NGW and phP/Agent.NJJ detected on several files.

Please check attached.

These are being removed by deletion and Websites comes down.

Attachments (1)

ESETLog.xml (16.1 KB) - added by wretana 4 years ago.
Log from ESET32

Download all attachments as: .zip

Change History (3)

4 years ago

Log from ESET32

#1 @SergeyBiryukov
4 years ago

  • Component changed from General to Security
  • Milestone Awaiting Review deleted
  • Resolution set to invalid
  • Status changed from new to closed

Hi there, welcome to WordPress Trac! Thanks for the report.

This should probably be reported as a false positive to the antivirus software in question. You can review the whole file contents here on Trac: wp-includes/post.php, I don't see any reason for it to be flagged, and it doesn't look like there are any actionable items for WordPress core here.

Just in case, make sure your site is not hacked.

#2 @SergeyBiryukov
4 years ago

Sorry, replied too fast after reviewing #43726.

Looking at ESETLog.xml, it seems like you indeed have some hacked theme files on your install.

Please follow the handbook article linked above: FAQ My site was hacked.

Note: See TracTickets for help on using tickets.