I'm a premium subscriber to Wordfence and it was pretty upsetting that I had to find the malware file myself. It was located in the wp-admin folder and I'm wondering why Wordfence didn't catch the file when it did a scan of the Wordpress core files. Fortunately I'm savvy enough with an FTP program that I was able to locate the file by the date (didn't match the other files) But if this file was indeed located in the core WordPress installation folder then why didn't the scan catch it? I did have the option checked to scan core WordPress files. Something like this makes me wonder about the value of paying for this?
Thanks!