7h3h

https://gpldl.com/remove-license-code-check-wp-rocket-wordpress-plugin/

You find it in the GPLDL Premium WooCommerce Extensions Repository at:

https://gpldl.com/repository/premium-woocommerce-extensions/

The entry is “WooThemes Product Add-ons WooCommerce Extension”.

Hi there!

Please have a look at the two ant-virus engines that report problems. Both of them are not optimized for WebScripts in any way. All other anti-virus engines (especially all highly popular ones which are much more to be trusted for WebScripts) say that files are clean.

Wouldn’t it be strange if only two not optimized and especially capable engines were the only ones to detect malware?

Isn’t it highly unlikely that the developers put in malware in the scripts they are selling?

Don’t get us wrong: We highly recommend having a second look at any WebScript that you download from any website (even from GPLDL) and virustotal.com is an excellent site for a quick scan but you need to be able to make your right interpretation of the results.

What you see in this case are two “false positives”. Please take the time to google “false positives” in combination with the two anti-virus engines and especially with exact description of the malware and your chances are that you will find reasonable proof that both are false alarms.

Since we do take your security seriously we also do automatic scans for malware of each new file that we download directly from the developers and upload to GPLDL and since we started GPLDL did not have a single file that contained malware.

It needs to be forked. The license Information is embedded in the code… Has anyone forked it before and can let us know how to do it 100%?

As long as each of the files is 100% GPL licensed you can make use of all rights the GPL provides to you.
https://en.wikipedia.org/wiki/GNU_General_Public_License

It first of all means that you most likely used virustotal.com, which is a great online service providing antivirus analysis routines from 54 different antivirus routines. 53 show a green checkmark (no known viruses or malware found) and only Bkav says “CPRBD72.Webshell”…

Now this either means that Bkav is the only one who was able to detect this webshell and the others failed or Bkav gave a false positive.

When you do some research on Google about “Bkav Antivirus” you will learn that they have specialized on Android…

Looks pretty much like a false positive, huh?

Why does Bkav do this? When you examine the .php file of which Bkav thinks that it contains the webshell, you will find some BASE64 code, which is contains the WPMUDEV logo. Using BASE64 Code in php is a a very ugly thing to do but unfortunately what WPMUDEV does and what most likely triggers the false positive.

Shelley, usually these kind of problems happen on the decompression side (with your decompression software installed on your computer). We checked the files you mentioned and they can be decompressed on our Mac on the command line without any problems. Hope that helps…

Can you check the license, please? 100% GPL?

We have added the YITH Waiting List WooCommerce Extension as a special gift to users who donated to GPLDL in the Special Gifts Section at https://gpldl.com/repository/special-gifts/

What do you think about the license? Does it allow legally sharing the plugin on GPLDL?

For now it has been added as a special gift to users who donated to GPLDL in the Special Gifts Section at https://gpldl.com/repository/special-gifts/

Do not share any links to plugins or themes hosted elsewhere.

Did you check the license terms? 100% GPL?

@xavyconnect: Have a look here: https://gpldl.com/topic/updating-themes-on-my-site/

@Dharmesh: The YITH WooCommerce SMS Notifications Extension has been added to the GPLDL WooCommerce Extensions repository.