Virus report from Hosting company

Hi,

If their virus-scanner thinks that there is something nasty inside the backup of your WordPress database, then that implies it thinks there is something nasty in your WordPress database. The best thing to do would be to ask your web host or developer so that they can check that out. UpdraftPlus itself isn’t an anti-virus tool, so it doesn’t have any tools within it to give you any particular help in analysing what that might be.

Best wishes,
Bryle

Thanks for the reply. I did a full virus scan of the site using their tools and nothing was found. They say the site itself is now clean and from my scan this seems to be correct.

Not sure what else to say really.

Is the data base not covered by a full site virus scan?

It is a false positive. I am ready to leave namecheap as they are blocking a valid file for another PHP application with the same signature. The file is clean and needed to run the app. Actually Namecheap deleted the file out of nowhere and will not let me upload again. If I manually create the file, it deletes it immediately.

ClamAV says YARA.blackhole_basic.UNOFFICIAL (which must be Namecheap’s Frankenstein creation of the YARA.blackhole_basic by ClamAV) does not recognize YARA.blackhole_basic.UNOFFICIAL as one of their signatures. Hence the UNOFFICIAL.

Create a Ticket on Namecheap and yell a lot. Some idiot system admin doesn’t know what they are doing.

Aye thanks assumed as much.

Every back-up I did their AV simply stripped the wp options table out of the database entirely so I couldn’t do a roll-back without a “this database is missing core file wp options” warning. Luckily it did not strip it out of the site itself but it obviously rendered Updraft pretty much useless if anything happened to require a roll-back.

Told them yesterday via a ticket and they replied this morning as follows:

Greetings Marco,

Our technical team has whitelisted the directory where the Updraft Plus plugin stores backups so the new backup files should not be moved to quarantine.

Please check it on your side and let us know if it helps.

Looking forward to hearing from you.

—————————————-
Regards,
Andrey Gevko
Hosting Customer Support
Namecheap, Inc.

Hopefully this will assist anyone else with this issue at Namecheap, but seems you need to ticket it or it won’t go away by itself. Worked fine until 15th August.

Hi,

Thanks for sharing the information with us here.

I’m glad Namecheap have resolve the issue on their end.

Best Wishes,
Bryle

No problem, glad to help. Whitelisting the directory is a semi solution and what they did for me, but doesn’t resolve Namecheap’s idiotic use of a UNOFFICIAL virus definition doing damage to legitimate files on customer’s website applications. In my mind they officially became a static html file only hosting provider.

Yeah, I’ll be honest I had far fewer issues in two years with Bluehost than in less than one with Namecheap.

The hosting is considerably faster as BH is Utah based and we’re all in the EU but other than that since I have been with Namecheap issues have cropped up that I never had before. I even had to enable cloudflare as I was subjected to a DDOS attack.

Maybe will look for something else when this year is up.