Peter Bargh

words pictures sounds
October 11th, 2011 by Peter Bargh

Threat has been detected!

I’ve just had an incident that I’ll explain how to get out of if you ever have the same. If you’re using an anti virus software and you get the message “threat has been detected” when you try to access wp-admin it could be that someone has posted a trojan in the comments on the public part of your site. Avast, for example, picks up on this and suggests you don’t visit admin because of the threat. I went in through an “edit page” route and clicked on the activate comment area and got the same “threat has been detected” message. So I knew it must be the comment that had the virus.

Comments are stored in the database, so access your wordpress blog database, find the wp-comments table. Look for the comments and find one with suspicious message in the comment_content field and delete it.

Leave a Reply

Your email address will not be published. Required fields are marked *