ClamAV Signatures for PHP Malware Detection in WordPress, Joomla, and Shared Hosting Environments

extending clamav signatures

Boost your malware detection rates in shared hosting environments with our specialized ClamAV Signatures. Perfect for WordPress, Joomla, CMS platforms and other PHP Files. Our ClamAV Signatures are tailor-made for real-world PHP malware threats targeting WordPress, Joomla, and other popular CMS platforms in shared hosting environments.

Signatures

malware.expert.ndb is a Generic Hex pattern PHP malware, which can cause false positive alarms, because there are generic eval, base64 and other hex pattern signatures (very low false positive rate). We want to scan all .php files and check the false positives manually for malware. If some signature causes to you problems, you can whitelist them.

malware.expert.yara is a textual or binary patterns for PHP malwares (very low false positive rate). We want to scan all .php files and check the false positives manually for malwares.

malware.expert.hdb is statics MD5 pattern for files, and there are no false positive.

malware.expert.hsb is statics SHA1/SHA256 pattern for files, and there are no false positive.

malware.expert.ldb is LDB signatures(read more), which use multi-words search for malware in files.

malware.expert.fp is whitelisted, what we found is that cause false positive malware.

PHP Signatures
€50 /per month
Unlimited servers
ClamAV

Are You a Shared Hosting Provider?

Our ClamAV Signatures are designed to seamlessly integrate with your existing security measures, making them ideal for shared hosting environments.

Don’t leave your CMS vulnerable. Secure your WordPress and Joomla sites now with our specialized ClamAV Signatures!