GoDaddy insists that UpDraftPlus files are concealing malware

  • Resolved gunnerstown

    (@gunnerstown)


    7 years, 2 months ago

    Hello,

    I was informed by GoDaddy that the following UpdraftPlus wordpress files on two of my sites contain malware (and they offered to sell me malware protection on their servers for $6 a month per site. I have 12 sites!

    My Site /wp-content/plugins/updraftplus/includes/handlebars/handlebars.js
    My Site /wp-content/plugins/updraftplus/includes/handlebars/handlebars.runtime.js

    I made Google scan my site for malware at https://trasnparencyreport.google.com/safebrowsing/search?
    and both sites came up clean.

    I also downloaded files and scanned on my computer using latest Sophos data. Nothing showed up. When I called GoDaddy and asked them what they had specifically found, they couldn’t tell me. When I asked them how they found the ‘malware’ they wouldn’t tell me.

    They only offered to have me pay to remove it themselves if I subscribe to their Site Malware Protection. They said if I didn’t address the issue then they would flag my site as being in violation of their usage agreements and take the sites down! When I told them Google couldn’t find anything wrong they weren’t interested.

    I don’t know enough about plugins to know if I can just delete the offending files.

    Has anyone else had this issue? Anyone who can advise me on hot to deal with it?

    Thanks so much.

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author David Anderson

    (@davidanderson)

    Hi,

    To see if someone has hacked your site, and put some nasty into those files, compare them with the original. To do that, check your UD version. Then download a pristine copy of that version from https://www.ads-software.com/plugins/updraftplus/advanced/. Also copy the files from wp-content/plugins/updraftplus from your webspace to your computer (i.e. download what you’ve got installed). Then use a tool like WinMerge to compare the two versions to see if those two files differ or not.

    David

    Thread Starter gunnerstown

    (@gunnerstown)

    Thanks for your reply, David.

    I will try and find a similar way of comparing the two files on my mac.

    Thread Starter gunnerstown

    (@gunnerstown)

    Hi David,

    I did as you suggested and compared the pristine download with the version on my website using BareBones TextWrangler and for both files got the result:

    “These Files Are Identical”.

    I’m not sure what it is in the code that is supposedly pressing GoDaddy’s Malware buttons. I would imagine that there should be hundreds if not thousands of WordPress installations on their sites that are raising red flags.

    Trying to get me to buy their protection is just scare tactics at its worst.

    I appreciate your help. Thanks.

    I know this has been resolved, but I just wanted to mention that I also experienced the same issue with these two files and GoDaddy. The files appear to be fine.

    • This reply was modified 7 years, 1 month ago by lotsamottsa.
    • This reply was modified 7 years, 1 month ago by lotsamottsa.
Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘GoDaddy insists that UpDraftPlus files are concealing malware’ is closed to new replies.