McAfee site warning when a long-time follower/commenter tries to log in

  • Unknown's avatar
    leavesandpages · Member ·

    A message yesterday from a long time blog follower/commenter has me concerned:

    “I’m shocked… When I signed into WordPress to comment, as I so often do, McAfee warned be in very serious language, that your site was NOT TO BE TRUSTED and recommended I get myself out of here. I ignored them, but they made me practically sign in blood that the consequences of going here were on my own head.

    Is a puzzlement.”

    It truly is a puzzlement – what can be triggering this?

    My blog is leavesandpages.com – http://leavesandpages.com/

    Any ideas on how to fix this would be greatly appreciated!

    The blog I need help with is: (visible only to logged in users)

  • Unknown's avatar
    johnjronline · Member ·

    Hello Leavesandpages,

    According to Virustotal.com and McAfee SiteAdvisor your blog is malware free:

    https://www.virustotal.com/en/url/0ff2a6e5ca27ae0dac1a64510a6ae5981796fe79a8fcf97512629eeccc76fdbf/analysis/1421015545/

    https://www.siteadvisor.com/sites/http%3A//leavesandpages.com/

    Maybe it was a false positive, maybe it was warning them about something else, maybe it was a fake antivirus warning made by some malware pretending to be McAfee, who knows?

    I recommend that they update McAfee and make sure that it is running/fully enabled/that their license has not expired and do a full scan with it and maybe download a backup/second opinion antimalware scanner like the free version of Malwarebytes Anti-malware and update it and go to the settings & enable the ability to scan for rootkits and do a scan with it to make sure that there is no malware running on their computer that might be triggering these warnings:

    https://www.malwarebytes.org/antimalware/

    Good luck,
    -John Jr

  • Unknown's avatar
    raincoaster · Member ·

    It’s almost certainly the http/https issue that WordPress is wrestling with. There is no danger, but it’s natural for there to be issues as Wp.com switches all non-custom domains over to https and then custom domains don’t have it. There is, unfortunately, nothing you can do about it.

  • Unknown's avatar
    johnjronline · Member ·

    Hello Raincoaster,

    I did not think about that since she mentioned it as a McAfee warning, they probably misunderstood that, and so you are probably correct. ;)

    Thank you for sharing that. :)

    -John Jr

  • Unknown's avatar
    leavesandpages · Member ·

    John – thanks so much for looking into this for me.

    And Raincoaster, your solution/answer may well be the correct one – looking through the forum I see this is happening randomly here and there on other WP blogs, and my blog would fit the profile, being a “custom” address.

    I’ll pass this along, and keep it in mind if it should happen again. :-)

    The quick response is greatly appreciated!

  • Unknown's avatar
    johnjronline · Member ·

    You are welcome Leavesandpages. :)

    -John Jr

  • Unknown's avatar
    raincoaster · Member ·

    Unfortunately, there IS no solution at the moment but at least we can make staff aware of it and put it on the list of things to fix.

  • Unknown's avatar
    amightywp · Member ·

    Hi there,

    Thanks for the feedback. We are definitely aware of the problem and are working to get something implemented. We will be announcing it on our own blog site as soon as we have something for everyone!

  • The topic ‘McAfee site warning when a long-time follower/commenter tries to log in’ is closed to new replies.