False Positive: malware infection we detected
-
hello my wife to buy your plugin today i will install and configure them
but my host Greengeeks promptly sends me a message
that I add you and
obviously your plugin contains malware
I would like to have a good explanation quickly thank you
patrickHello F—-,
Our real-time scans have detected an active malware infection within your GreenGeeks account.
To help protect your account and our network, we were forced to block the folder “—url—”
It is important that you take action and secure your website as soon as possible. See our blog article below concerning the next steps to take:
https://www.greengeeks.com/blog/2017/03/21/this-is-what-you-need-to-do-now-to-secure-your-website/
We can assist with cleaning your website if you are not familiar with malware infections. We offer this service Monday through Friday from 9AM to 5PM EST. Please be aware that the removal of some infected content could lead to side effects on your website. While software updates are often required to patch security vulnerabilities, new updates have the potential to introduce compatibility problems with your website. Cleaning the infection does not guarantee the website will be fully functional. You may need to make additional repairs and review other website functions to ensure that everything is working correctly. This is a permanent one-way process and we cannot assist you with reverting any changes made during the cleanup. If you need a backup of your website, you would need to create this backup before we proceed with the cleanup process.
You can reference the following article to learn how to create a backup of your website:
https://www.greengeeks.com/support/2198/how-do-i-create-a-backup-of-my-site/
Please note that we offer one website cleaning for the lifetime of your hosting service. Additional cleanups can be provided upon request, subject to a service fee. Our cleanings are not a replacement for maintaining your website. You are ultimately responsible for your website content. Proactive management of your websites is pertinent for optimal security. We are happy to advise as best we can but you may need to consult with a web developer depending on the exact situation.
Please respond back with confirmation if you would like to proceed with our assistance and utilize your included cleanup and I can escalate your request.
Information regarding the malware infection we detected is included below.
############ LOG START ############
—-url—/wp-content/plugins/complianz-gdpr-premium/pro/assets/composer.phar
############ LOG END ##############If you are cleaning your site yourself, let us know once you have completed cleanup so we can unblock your website, or if you have any questions.
-
Hi @milonet,
As stated in my e-mail:
This file: /home/frenchba/public_html/french-baskets.com/wp-content/plugins/complianz-gdpr-premium/pro/assets/composer.phar, is used for dependency management of PHP, the language the plugin is written in, as is WordPress.
It is widely used by many plugins, themes, and other PHP software and is not malware. You can find some information here about composer.
I don’t know why they triggered on this commonly used manager. You can find our plugin risk score here: https://coderisk.com/wp/plugin/complianz-gdpr
As this is related to the Premium plugin and contains sensitive information, we can’t offer support here, so we need to keep it via email.
regards Aert
For Mods; this is regarding premium support, and is being dealt with by email.
- The topic ‘False Positive: malware infection we detected’ is closed to new replies.
