Donations keep this Plugin alive! If you value this Plugin I urge you to donate as much as can so that I can keep it up-to-date and make it better. The more money I get, the more time I can devote to it, the more you benefit.
Members
441 Comments on "Members"
Leave a Reply
Get instant updates to new definitions files as new threats are discovered.
*All fields are required and I will NOT share your information with anyone.
*All fields are required and I will NOT share your information with anyone.
Glad to see community is active, product is supported and updated.
Hi,
Sorry to say that today your scanner is not picking up the malware hidden in the faked and hidden insert-headers-and-footers plugin. The plugin contains the file ihaf.php script that delivers the malware.
This has been discussed before: https://wordpress.org/support/topic/new-malware-found-in-wordpress-installations-hidden-admin-users-redirects-and/
From the skipped files log, it can seen that the scanner didn't seem to trigger as all was reported clean and good in the end.
skipped log->
…/wp-content/plugins/insert-headers-and-footers/admin/images/default-user-icon.png
X…/wp-content/plugins/insert-headers-and-footers/admin/images/duplicator.jpg
X…/wp-content/plugins/insert-headers-and-footers/admin/images/icon-all-in-one-seo-pack.png
X…/wp-content/plugins/insert-headers-and-footers/admin/images/icon-charitable.jpg
X…/wp-content/plugins/insert-headers-and-footers/admin/images/icon-duplicator.png
X…/wp-content/plugins/insert-headers-and-footers/admin/images/icon-edd.png
X…/wp-content/plugins/insert-headers-and-footers/admin/images/icon-search-replace-wpcode.png
X…/wp-content/plugins/insert-headers-and-footers/admin/images/icon-uncanny-automator.png
X…/wp-content/plugins/insert-headers-and-footers/admin/images/icon-wp-mail-smtp.png
X…/wp-content/plugins/insert-headers-and-footers/admin/images/icon-wp-simple-pay.png
X…/wp-content/plugins/insert-headers-and-footers/admin/images/icon-wpforms.png
X…/wp-content/plugins/insert-headers-and-footers/admin/images/mircea.png
X…/wp-content/plugins/insert-headers-and-footers/admin/images/spinner.svg
X…/wp-content/plugins/insert-headers-and-footers/admin/images/sr-screenshot-thumb.jpg
X…/wp-content/plugins/insert-headers-and-footers/admin/images/sr-screenshot.jpg
X…/wp-content/plugins/insert-headers-and-footers/admin/images/syed.png
X…/wp-content/plugins/insert-headers-and-footers/admin/images/upgrade-welcome-cloud.jpg
X…/wp-content/plugins/insert-headers-and-footers/admin/images/upgrade-welcome-generator.jpg
X…/wp-content/plugins/insert-headers-and-footers/admin/images/upgrade-welcome-headers-footers.jpg
X…/wp-content/plugins/insert-headers-and-footers/admin/images/wpcode-logo.png
X…/wp-content/plugins/insert-headers-and-footers/build/admin-bar.css
X…/wp-content/plugins/insert-headers-and-footers/build/admin-global-lite.css
X…/wp-content/plugins/insert-headers-and-footers/build/admin.css
X…/wp-content/plugins/insert-headers-and-footers/languages/insert-headers-and-footers.pot
Mike
As I said in the discussion thread that you linked to here, I have seen this before and you must have a new variant with different code than the infections previously discovered.
Per my last request in that thread, can you please send me the infected code so that I can add it to me definition updates?
thank you very much
thanks
you finish my cleaning day perfectly
Still rocks in 2025! Thank you
merci pour app
thanks
thanks
you finish my cleaning day perfectly
This plugin is really THE BEST!!!
Proudly donated twice and will proudly donate more. keep up the great work!
Hola. Tengo mi sitio web infectado me lo dijo mi hospedador y se muestra 590 archivos infectados, no soy desarrollador. ¿Cómo los elimino?
Su pluguin tambien detectó la infección, pero no se como eliminarlo. Si hago el pluguin podrá eliminarlo?
Gracias.
If you download the latest definition updates then I my plugin will be able to identify and remove any Known Threats that are found during the scan.
Si descarga las últimas actualizaciones de definiciones, mi complemento podrá identificar y eliminar cualquier amenaza conocida que se encuentre durante el análisis.
This is the best plugin out there to fix WordPress issues. We use it for many customers and never got disappointed. We donated for your great work.
Hi dude,
i have an issue with my blog. my blog is injected with casino links and all of them are visible in the view source. I have tried everything but there is no solution and findings even your plugins did not detect it.
can you please suggest me what should i need to do ?
I don't see these casino links on your site. Can you please send me a direct email with a link to the infected page and an example of the injected code so that I can help you identify the source or the injection?
GOTMLS saved my day. Expect donation soon
Hi I made the $29 donation but members still tells me that I haven't donated and if I have, how many websites can I use it
I see your donation on your account with the matching email address, but I have also found a few other accounts for you under different email addresses. For your own benefit and ease of management it would be better for you to register all your sites under the same email address so that they are all on the same account. You can login to https://gotmls.net/members/ with the other email accounts and transfer those registration to your main email account if you want.
Hello I got you plugin and i did the donations.. now whats next? i need to clean the malware in my site can you help please?
Run the Complete Scan and my plugin will prompt you to automatically fix any Known Threats that are found.
how to reset the plugin
I made a mistake putting a different email .. now It wont let me change it can you tell me how to rest
I all ready uninstall and re install it and wont work ..thank you for you support and help
to re-register the plugin from the Anti-Malware Settings page in your wp-admin simply click on your registration key to pop open the pre-filled registration form, then enter the new/correct email and submit the form again.
Hi, i'm getting the following error on one of my sites after the most recent update:
Warning: Undefined array key "SESSION" in /wp-content/plugins/gotmls/images/index.php on line 1114
I'm on php 8.1
Thanks for reporting this. I will have that Warning fixed in my next release, which should be very soon…
I have just released a new plugin update (version 4.21.95) that fixes this PHP Warning. Please try the new update and let me know if you still have any issues.
Hi,
How do I transfer a website and its key to another account? It keeps creating new accounts and not sure how to move them.
Thanks
When you are logged into the Profile page at https://gotmls.net/members/ you will see a button at the top of the page next to your email address that says "Transfer registration to another email account".
Alternatively you can simply re-register your website from your own wp-admin by clicking on the key on the right-hand sire of the Anti-Malware Setting page. You can then change the email address on the pre-filled registration form and submit this form again to re-register your key under the new address.
I have a website that was linked to free account that I have removed. I have created a new account, but I cannot add this to my new account. How to unregister a website that I have removed?
If click on the registered key on the right-hand side of the Anti-Malware Settings page in your wp-admin then it will open the pre-filled registration form. Simply change the email address on that form to match the account that you want to register this site to and it will re-register this site to that new account.
We used it on one of our websites which somehow got infected.
We find Malware with every single scan and are somehow frustrated. Are there any hints and tricks what further we can do to get rid of this f***ing Malware?
if your site is continuing to get re-infected with the same (or similar) malware over and over then the trick is to find the source of the infection.
The Anti-Malware Quarantine can help you pin down the exact time of the infections, then you can look in your access_log files to find the activity that may be responsible for these infections.
Keep in mind that if you are on a shared hosting server then the infection might have come from any of the other sites on that server.
i use it for my website … it worked very well thank you very much you saved me from a huge problem
gracias, es excelente
Heyo I am planning on implementing this for many of our clients, however, we would like to avoid $29/site fees. Please reach out, and let me know what we can line up, thank you!
If you register all those sites under a single email address then they will all be on the same account. One donation of $29 or more will unlock the current premium features on all the sites on that account
HI, I wanted to change my website here, I have made new website and to change that I clicked on "Unregister website" . But now it is not showing option to add new website.
Can you please help?
Simply register your new website from the pre-filled registration form on the Anti-Malware Settings page in your own wp-admin, just as you did with your first registered site. You can use the same email address if you want the new site to be registered on this same account.
hi this is amazing plugin I m using it at my all websites
is it a donation by website? Or the same donation works for several sites?
If you register all your sites under the same email address then you you can unlock the current premium features on all of them with a single donation
Hola, hice la donacion por paypal pero me sigue mostrando que no he hecho ninguna donacion y las funcionalidades premium siguen bloqueadas
Your donation was automatically assigned to your account with the matching email address but the site in question was re-registered to another account under a different email address. Please try to keep all your registrations under the same email address so that they will all be on the same account with your donation.
Wie kann ich eine weitere Webseite hinzufügen?
Muss ich für jede Seite einen neuen Account anlegen?
Use the pre-filled registration form on the Anti-Malware Settings page in your wp-admin to register each site. If you register each new site by entering the same email address into the registration form then they will all be on the same account
Já fui salvo muitas vezes com a ajuda do trabalho de vocês com o plugin Anti-Malware, não existe outra forma de contribuir sem ser por paypal? Hoje descobri um plugin falso Mplugin e o arquivo
de txt admin_ips.txt que continha um número IP, já consgui localizar e remover do site. Muito Obrigado pela ajuda!
Thanks for your kind words. I'm glad my plugin has helped you.
Yes, you may also make payment with a credit card using the Stripe form as an alternative to PayPal, and there is even a button to contribute crypto on my donate page
So I am new to this plugin and when I run the fix for an infected site all i get is a message saying New position saved [default position] And it loads and continuiously for as long as i leave it (hours) not seeming to fix the issues yet… What am I doing wrong? being too impatient idk… I would appreciate any assistance
You should be seeing a button that says "If this is taking too long, click here", if you click that then you should see the error that is causing that page to not load. You can also right click on the page and choose "Inspect" and view the Console tab of your browser's Inspector for any JavaScript errors on that page. You can also check the error_log files on your server to see if there is anything in there that would explain what is causing the error. If you still don't see any errors that might explain what is wrong or why the page is not loading then could you please send me a screenshot so that I might help you figure out what's wrong here?
replied to your email
A+++ Donated $29, 3x just now. Your software fixed my issue. Best $90 spent!
I have 5 sites. Just made two more payments since I am using it on all sites. Thanks!
Thank you for your support!
Hi Have 2 sites which should be on gotmls.net The first set is showing(payment was made via paypal) the second payment for the second site, payment was made via card, the money has left my account however on here I can only see the first website. What to do? The payment was made at 02:34AM UK time on 09/10/2021
I see both donations on the same account but there is only one site registered to that email account. Can you please let me know which site is missing from that account? It must be registered to another email address so you could also just login under that account and transfer your other registered keys to the same email account that shows your donations, or you can re-register your site which does not show your donations to the correct email address by clicking on the registration key in the upper-right corner of the Anti-Malware Settings page in your wp-admin.
My initial scan found possible malware, however, once I did the update, everything came back clean. Would the core scan find the malware that is fwding my visitors to another website?
It's possible that the Core File Scan will find it but it's just as likely that this is a new threat from a plugin or theme file that is not in the Core Files at all. If you saw so Potential Threats from running the scan before you had the definitions installed but no Known Threats were found when you installed the most recent definition then it likely a new threat that isn't know yet. You can un-check all the threat types on the Scan Setting page in your wp-admin and that will set the scan to only look for potential threats again. Many of these will not actually be malicious and my plugin will not automatically fix these potential threats because that code might actually be needed by WordPress to run and removing it without understanding the implication to the site could cause your site to crash. So you can use that scan to examine the code but make sure you know that what you find is actually safe to remove before you start altering the code in those files.
Great work cleaned up my server really quick thanks
I tried and it was working good!
Hi. I've installed the plugin in my development website, which uses a different subdomain from the final web address. What will happen to my plugin registration when I finish this website and copy it to the final address? I'm in a Unix server, and I'll be using TAR (.tar.gz) when I make the transfer.
Also, I may want to keep the development website for testing purposes.
Just register your new key to the same email address and your registration will be on the same account. You can keep the registration on the dev site too.
When we try to register the submitted key, it tells us that it is registered, could they help us?
Maybe try clearing your cache and refreshing your wp-admin. I see that your main site is already registered. What site are you trying to register and what is the key?
perfect, works
we have a multisite, can we use the same license for all subdomains?
Each subdomain will be assigned a unique key but if you register all your keys under the same email address then they will all be under the same account.
La donacion son 29 Dolares?? que moneda es?? Soy de Chile!!
$29 USD.
good , thanks you
hi, i have several websites
I can use the same account on these websites
refers to the full version
Yes, if you register all your sites under the same email then they will all be on the same account and you only need to make one donations to unlock the current premium features on all sites.
Thank you, I will also do. Great Work…
merci pour travail
Hi, Such amazing. Thank you!
Gracias por sus esfuerzos
Franchement tu as assuré, je suis au Gabon (Afrique) Je te reviens dans quelques jours pour te remercier. Bravo et merci encore !
Thank you for your efforts
This application is really a woww.
Fixing the issues immediately and that to without disturbing my website. Superb
Wooww,
incredible plugin, having really nice features.
Keep it up.
Great work cleaned up my server really quick thanks!!
Hi mate, Thank you for your efforts
Hi, I have just donated…great work. I am now cleaning one hacked website. Your plugin cleaned several files and database. Than it said its clean but I have found some other suspicious line in my theme header.php file. Where can I send it to you to analyze?
Thanks
Thanks! Please email me directly with any file that you think might contain malicious code. I will check them and add any new threats to my definition updates ASAP
Thanks I have found your email yesterday on plugin page. So I sent whole file.
Tried many things to clear the malware and many other pluggins, None of them worked as well or as user friendly as this one. They offer it free, but I donated, as 29$ is well worth the work done here. Thank you.
Hi mate, license after donation is for unlimited websites ? thanks.
Yes, all the current premium features will automatically unlock on all sites that you register under the same email address or that are transferred onto the same account with a donation of $29 or more