Title: InfiniteWP client plugin getting false positives Last modified: August 30, 2016 --- # InfiniteWP client plugin getting false positives * Resolved [infinitewp](https://wordpress.org/support/users/infinitewp/) * (@infinitewp) * [10 years, 9 months ago](https://wordpress.org/support/topic/infinitewp-client-plugin-getting-false-positives/) * Critical Problems: * * This file may contain malicious executable FILEPATH/wp-content/plugins/iwp- client/init.php * * This file may contain malicious executable code FILEPATH/wp-content/plugins/ iwp-client/pclzip.class.php * [https://wordpress.org/plugins/wordfence/](https://wordpress.org/plugins/wordfence/) Viewing 7 replies - 1 through 7 (of 7 total) * [WFSupport](https://wordpress.org/support/users/wfsupport/) * (@wfsupport) * [10 years, 9 months ago](https://wordpress.org/support/topic/infinitewp-client-plugin-getting-false-positives/#post-6476707) * Are you scanning with high sensitivity enabled? * tim * [Ovidiu](https://wordpress.org/support/users/ovidiu/) * (@ovidiu) * [10 years, 9 months ago](https://wordpress.org/support/topic/infinitewp-client-plugin-getting-false-positives/#post-6476711) * ah, that explains it, yes, I am the one who reported this to infinitewp and yes, I had “high sensitivity” checked. * I know its a false positive, I had just thought to warn them in case other users experienced teh same. * Plugin Author [WFMattR](https://wordpress.org/support/users/wfmattr/) * (@wfmattr) * [10 years, 9 months ago](https://wordpress.org/support/topic/infinitewp-client-plugin-getting-false-positives/#post-6476763) * Ok, if it only shows up during high-sensitivity scanning, that is expected. Usually this option is only used to help in cleaning difficult infections, and we generally recommend leaving it off, since false positives will be found in files that are ok. * More details on the high sensitivity option are included here: [High Sensitivity Scanning](http://docs.wordfence.com/en/Wordfence_options#Enable_HIGH_SENSITIVITY_scanning) * [Ovidiu](https://wordpress.org/support/users/ovidiu/) * (@ovidiu) * [10 years, 9 months ago](https://wordpress.org/support/topic/infinitewp-client-plugin-getting-false-positives/#post-6476805) * Thanks for the clarification! * [montanagrafix](https://wordpress.org/support/users/montanagrafix/) * (@montanagrafix) * [10 years, 9 months ago](https://wordpress.org/support/topic/infinitewp-client-plugin-getting-false-positives/#post-6476872) * I received the same notification but High Sensitivity Scanning was not enabled. Should I be concerned? * Plugin Author [WFMattR](https://wordpress.org/support/users/wfmattr/) * (@wfmattr) * [10 years, 9 months ago](https://wordpress.org/support/topic/infinitewp-client-plugin-getting-false-positives/#post-6476876) * Was it the same exact message, including “wp-content/plugins/iwp-client/” as the path to the file? * A similar message might also come up on the pclzip file included with WordPress itself, if you have a second copy of WordPress installed in the same folder. ( For example, a regular WordPress site, plus another copy of WordPress installed at site.com/blog/ or a similar location.) * It is probably ok, but if you want to email me a copy of the file at mattr [at] wordfence.com then I can take a quick look. Please include a link to this post in the message. * Plugin Author [WFMattR](https://wordpress.org/support/users/wfmattr/) * (@wfmattr) * [10 years, 9 months ago](https://wordpress.org/support/topic/infinitewp-client-plugin-getting-false-positives/#post-6476907) * montanagrafix: * I received your files — the zip file and .tmp file are most likely ok. We have seen this from other backup plugins because some of the files that are known to be safe can’t be verified in the same way while inside a backup file, but this is the first time I have seen it in backups from InfiniteWP. Are you using the Wordfence Option “Scan image files as if they were executable”? * If the zip can be opened like a normal zip file, then it is most likely fine. The tmp file is probably a partial zip file that was made during the backup, and might already be gone. Viewing 7 replies - 1 through 7 (of 7 total) The topic ‘InfiniteWP client plugin getting false positives’ is closed to new replies. * ![](https://ps.w.org/wordfence/assets/icon.svg?rev=2070865) * [Wordfence Security - Firewall, Malware Scan, and Login Security](https://wordpress.org/plugins/wordfence/) * [Frequently Asked Questions](https://wordpress.org/plugins/wordfence/#faq) * [Support Threads](https://wordpress.org/support/plugin/wordfence/) * [Active Topics](https://wordpress.org/support/plugin/wordfence/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/wordfence/unresolved/) * [Reviews](https://wordpress.org/support/plugin/wordfence/reviews/) * 7 replies * 5 participants * Last reply from: [WFMattR](https://wordpress.org/support/users/wfmattr/) * Last activity: [10 years, 9 months ago](https://wordpress.org/support/topic/infinitewp-client-plugin-getting-false-positives/#post-6476907) * Status: resolved