False positive results

The malware scanner checks all folders and files on your website for malicious code. Even correct and non-malicious code can sometime look malicious under different circumstances. This is called a false positive.

A file marked by the malware scanner as suspicious does NOT have to contain “bad” code.

Sometimes it is quite obvious and even specific viruses or attacks can be identified by name. Other times it could be legit programming made with no malicious intent, or it is malicious code trying to hide.

This is where you should start looking if you are getting warnings or suspect your website is hacked.

Although we try to limit the number of files that are wrongly identified, we also want to be thorough and rather show you a couple of wrong identified files than miss something malicious.

This means we can sometime show a file as suspicious, but it does not mean they will do harm to your site. It just means you need to have a closer look at their content.

Please do not just delete a file because the scanner has marked it for your attention, this file could be legitimate and do no harm, but for some reason has indicators it is suspicious. Deleting the wrong file could also break a part or your whole website.

Was this helpful?

Previous Article

Scan for malware

Still need help?

If searching the knowledge base does not help you, please contact support.

Fast and easy to use WordPress Security

Instantly protect your website from 600+ million bad IPs

10% OFF

Subscribe to our newsletter

* We do not spam or share your email

Discount on any Security Ninja plan

and get

Hi and welcome back :-)

We won't spam you. Unsubscribe any time.

Wait! Before you go!

Get 10% discount for any WP Security Ninja plan!


Subscribe to our newsletter for new releases, discounts and general WordPress Security news. Sprinkled with other interesting stuff :-)