Forget the above question. I already figured how to use it. Thanks for taking your time to help me. In my opinion I think cURL scanner is easier to use and it works well in finding plugins scripts to add to the Plugin Firewall Whitelist than the Plugin Firewall [obsolete-removed]. If that so, then why dont you make cURL scanner the default tool for scanning a website for plugin scripts to add to the Plugin Firewall Whitelist?