Title: wordfence_tmpfile_wfsd_engine.php
Last modified: August 20, 2016

---

# wordfence_tmpfile_wfsd_engine.php

 *  [7746T](https://wordpress.org/support/users/7746t/)
 * (@7746t)
 * [13 years, 3 months ago](https://wordpress.org/support/topic/wordfence_tmpfile_wfsd_enginephp/)
 * Hi – can you explain at what point WordFence creates the file mentioned below?
 * One of my accounts is running WordPress on a cPanel server with the configserver.
   com firewall installed. Periodically I receive a “Suspicious File Alert” referencing
   this file.
 * File: /tmp/wordfence_tmpfile_wfsd_engine.php
    Reason: Script, file extension 
   Owner: nobody:nobody (99:99) Action: Moved into /etc/csf/suspicious.tar
 * Q: Is the file legit? At what point does WordFence create this? Is it okay to
   put the file on a “clean list?” Thanks –
 * [http://wordpress.org/extend/plugins/wordfence/](http://wordpress.org/extend/plugins/wordfence/)

The topic ‘wordfence_tmpfile_wfsd_engine.php’ is closed to new replies.

 * ![](https://ps.w.org/wordfence/assets/icon.svg?rev=2070865)
 * [Wordfence Security - Firewall, Malware Scan, and Login Security](https://wordpress.org/plugins/wordfence/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/wordfence/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/wordfence/)
 * [Active Topics](https://wordpress.org/support/plugin/wordfence/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/wordfence/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/wordfence/reviews/)

 * 0 replies
 * 1 participant
 * Last reply from: [7746T](https://wordpress.org/support/users/7746t/)
 * Last activity: [13 years, 3 months ago](https://wordpress.org/support/topic/wordfence_tmpfile_wfsd_enginephp/)
 * Status: not resolved