quttera
Forum Replies Created
-
Thank you for reporting this issue.
We approve this is false positive detection and will be whitelisted on our side.
Best Regards
Quttera Team.We are looking at the issue and will fix it ASAP.
Forum: Plugins
In reply to: [Quttera ThreatSign – Web Malware Scanner for WordPress] False warningsWe finished investigation of all provided files and all of them are clean. We will whitelist detection on our side.
Thank you for reporting this issue.
Forum: Plugins
In reply to: [Quttera ThreatSign – Web Malware Scanner for WordPress] False warningsThank you for reporting this issue.
All files classified as enPotentiallySuspiciousThreatType could be skipped/whitelisted.
wp-config.php loads /var/lib/sec/wp-settings.php from an external location, just verify wp-settings.php is not modified fileRegarding the rest of the files classified as malicious, we need to investigate them. Can you please archive these files and send it to email support{at}quttera.com?
Can you please verify whether these files also detected by the normal sensitivity internal scan?
Hello and thank you for the question.
Can you please send us this file and the question to support team by email support[at]quttera.com?
Our team will investigate the file and update you regarding our findings.
Best Regards.
Forum: Plugins
In reply to: [Quttera ThreatSign – Web Malware Scanner for WordPress] Total Scan: 0Some additional information from plugins FAQ section
Why when I run an internal scan, the scanned files count shows 0 (zero)?
The plugin scheduler invocation is based on WordPress Cron mechanism.
Some web hostings and servers do not enable the functionality required for WordPress Cron mechanism to work correctly.
There is a way to overcome this limitation by using alternative WordPress Cron. To enable alternative Cron, please add the following line to wp-config.phpdefine(‘ALTERNATE_WP_CRON’, true);
Forum: Plugins
In reply to: [Quttera ThreatSign – Web Malware Scanner for WordPress] Total Scan: 0If cronjob mechanism works properly and scan still didn’t start, please post here last 10 lines of plugin log file, you can find log file into plugins directory.
Please let us know whether it worked for you.
Forum: Plugins
In reply to: [Quttera ThreatSign – Web Malware Scanner for WordPress] Total Scan: 0The internal scan procedure trigger using cronjob mechanism provided by WordPress.
When you start a scan, the plugin creates cronjob entry with appropriate callback function and timeout.
When timeout fired, wordpress calls provided scanner function and perform the scan.Please verify that cronjob mechanism is enabled in your WordPress and registered cronjobs executed properly.
Thank you for the update. We will fix it on our side.
Just to mention a few things, we never charge for our services if a customer purchased a subscription due to false positive detection generated by this plugin.
And please pay attention, the following text on top of the scanner dialog describes the
“””
This is a heuristic scanning of the file system for malware. Heuristics are used in our technology to detect unknown infection. Note: due to the high sensitivity, it might flag not dangerous code as well (False-Positive). For the resolution of the false-positives please contact quttera support on plugin page or email [email protected].
“””Thank you again for your time to test our plugin and the provided review.
Thank you for the provided feedback.
Can you please provide us instruction to reproduce this issue and we will do our best to whitelist these detections?
It would be very appreciated if you could share with us a list of plugins used on your site to avoid further false positives.
Please pay attention high-sensitivity scan claims on the possibility of false-positive detection since the plugin performs very aggressive matching and mostly should be used to detect infection missed during normal scan mode.
Forum: Plugins
In reply to: [Loco Translate] Quttera malwareHi @timwhitlock, you absolutely right, we had some incorrectness in one of the detection rules which lead to this FP.
The issue had been fixed in the lastly released definitions database.
BR
Quttera Team.Forum: Plugins
In reply to: [Loco Translate] Quttera malwareThank you for provided information, yes this is FP, we already fixed the detection and will release new definitions database shortly.
Thank you for pointing this out.
Forum: Plugins
In reply to: [Loco Translate] Quttera malwareIs this issue reproduced using a “heuristic – high sensitivity” scan?
Thank you.
Forum: Fixing WordPress
In reply to: quttera plugin + website malware@dnmmalta, Thank you so much for the update, great to know that scan finally worked for you.
Regarding ALL sites reinfection, please pay attention if all your websites managed under a single hosting account, (re)infection of one website will lead to (re)infection of all other sites since all sites share the same user/access permissions.
Thus a single plugin vulnerability in one website can actual lead to reinfection of all sites.
Please try to go over all website access logs in a range of 36-24 hours before reinfection.
Best Regards
Quttera Team.Forum: Reviews
In reply to: [Quttera ThreatSign – Web Malware Scanner for WordPress] Waste of timeThank you for provided review.
We apologize that it is so negative but please note this plugin is intended to scan websites internally and externally with high sensitivity and help to identify hidden infection missed by other plugin.
The high sensitivity scan may lead to false positives and cure of such detection may corrupt a website.
This is the reason this plugin does not provide cure functionality.
Again, thank you for the review.
Best Regards
Quttera Support Team.