My host detected malware

  • Resolved Touray

    (@otouray)


    7 years, 11 months ago

    I receieved a notification from my host that they found the following malware file at /plugins/ninjafirewall/lib/share/sigs.txt :

    {YARA}Safe0ver_Shell__Safe_Mod_Bypass_By_Evilc0der_php

    Is that a legit file?

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author nintechnet

    (@nintechnet)

    Yes, it is. That file contains malware signatures and is part of NinjaFirewall’s package.
    You can tell your host it is a false positive.

    WPJohn

    (@wordpressjohn)

    The same happens at my own host. Maldet detects the NinjaFirewall signatures as malware. Think we can fix this by changing the Maldet rules.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘My host detected malware’ is closed to new replies.