Forum Replies Created
-
I have not received a response since January 29th.
Is this still being looked into ?
I am not really able to use this plugin since it causes CLAM AV to auto-delete my backups.
===========
FYI – back in 2013 I was one of the VERY first users of this plugin after that massive BOT attack.
I do not want to have to move on to a different plugin as I am very comfortable with this one.
I have bought MANY licenses both on CodeCanyon.net and on WPWAVE.com
===========
Please help.
Look forward to your reply.
Hello. I just saw your reply here. I did not receive an email notification.
What I need to know is how do I clear the IDS logs ?
===========
1) – So I should keep the plugin activated ?
2) – Clear the IDS logs ?
3) – And then run Clam AV on the database via C-Panel ?
===========
I would be using the following command line using “putty”
clamscan -r –remove=no /var/lib/mysql/user_database(where user_database is the actual database name)
===========
Look forward to your reply.
Thanks for the reply.
1) – Yes, we already tested on a fresh site.
2) – The 2 statements are not conflicting.
Because as mentioned for #2 ( ” AND EVEN WHEN UN-installed the database is STILL showing up as infected” ).
In other words, HMWP is leaving behind a “virus signature” somewhere within the “wp_options” table EVEN AFTER it is UN-installed and deleted.
============
IMPORTANT NOTE:
This ONLY happens after activating HMWP.
This is not occurring with any other plugin.
============
IMPORTANT QUESTION:
IF this is a “false positive” within the “wp_options” table, is there a way to get CLAM AV to ignore “HMWP” within the “wp_options” table ?
—
UPDATE:
In “wp_options” table in our database, we deleted the rows (that HMWP adds) with following “option_name”.
We installed HMWP version 2.5.1 :
– hide_my_wp ( FOUND and DELETED )
– hide_my_wp_undo (NOT FOUND )
– hmwp_ids_installed (NOT FOUND )
– hmw_all_plugins ( FOUND and DELETED )
– external_updates-hide_my_wp (NOT FOUND )
– hmwp_spam_counter (NOT FOUND )
– hmwp_temp_admin_path (NOT FOUND )===============
Result CLAM AV still shows that the database is infected.
===============
Please note :This ONLY occurs when HMWP is “activated”.
And even when UN-installed the database is still showing up as “infected”.
We even tested this without any other plugin installed.
===============
IMPORTANT QUESTION:
IF this is a “false positive” within the “wp_options” table, is there a way to get CLAM AV to ignore “HMWP” within the “wp_options” table ?
HMWP has been very important to our online WP security, at the same time we also need the ability to have our auto DB backups intact .
We purchased 20+ licenses, and plan to buy more.
Look forward to your reply.
TICKET UPDATE:
The CLAMAV virus definitions are picking up “virus signatures” no matter what version of HMWP we use.
What exactly is HMWP inserting into the WP-Options database table ?
And how do we delete the signature ?
Or is this a false positive ?
If so, how do we get CLAMAV to ignore the specific false positive ( virus signature ) that is being inserted by HMWP ?
=============
Need help with this so that our auto-db backups are not being deleted by CLAMAV during the virus scan .
