You run a security audit on your Joomla site. Result? 47 files flagged as “Suspect Content.” OH NO!!!!!
Which are actual malware? Which are false positives? Do you spend hours reviewing PHP code or wait days for expert analysis?
Not anymore.
Introducing AI-Powered Malware Analysis – when our audit tools flag suspicious files, you can now send any file to AI for expert analysis with one click.
The AI tells you:
- “This is a false positive – safe to ignore”
- “This is suspicious – review line 42”
- “This is malware – remove immediately”
The game-changer CROWDSOURCE CACHED RESULTS: When you or anyone else analyzes a file with our AI integration and gets a definitive result (SAFE or MALWARE), that result is stored globally by file hash. If someone else already analyzed that file, with the same hash (meaning the same file contents) you get instant results at no cost. Your analyses help others. Their analyses help you. The entire community benefits from shared intelligence.
(No details on your domains, your site, or personal information is shared, the hash of the file contents and the result is all that we store)
Example Malware Extracts from the AI analysis:
Why We Waited
We watched the AI hype train and intentionally stayed off it.
Every company rushed to add “AI-powered” to their product. Chatbots that frustrate users. Features solving problems nobody had. Buzzwords without substance.
We waited.
For over a decade, we’ve secured Joomla and WordPress sites. We knew our audit system worked brilliantly at finding threats. But it casts a wide net, meaning false positives. Users had to review code themselves or wait for us to review files manually.
We asked: Can AI genuinely solve this problem? Not “is AI trendy,” but “does AI add real value?”
We tested for months. Analyzed thousands of files. Compared AI results against expert reviews. Measured accuracy and cost-effectiveness. Built safeguards.
The answer: Yes. AI excels at what users struggle with—reading PHP code, identifying suspicious patterns, separating legitimate code from malware.
This isn’t AI for AI’s sake. This solves a real problem we’ve watched users struggle with for a decade.
How It Works
Our Proven Foundation
For 10+ years, our security audit system has scanned filesystems using pattern-matching built from real-world hacks. It catches backdoors and malware most users would never find. By design, it flags suspicious files broadly—better to review a safe file than miss malware.
AI Analysis Layer
When audits flag files, you see a colored AI icon:
- 🟣 Purple = Not analyzed
- 🟢 Green = Safe
- 🟡 Yellow = Suspicious
- 🔴 Red = Malicious
Click to send the file to AI (Claude Sonnet 4.5 or GPT-4). Within seconds, get expert analysis with:
- Risk level and confidence score
- Exact line numbers of issues
- Code snippets and explanations
- Actionable recommendations
Crowdsourced Intelligence
Definitive results (SAFE/MALWARE) are stored globally by MD5 hash. Same file on 100 sites = 1 analysis, not 100. Popular WordPress plugins? Likely already analyzed by the community. Your discoveries protect everyone else.
Over time, this crowdsourced data refines our audit patterns, creating a feedback loop: better detection → better AI data → better detection.
Key Benefits
1. Expert Analysis Without the Expert
What took hours or days now takes seconds. No more waiting for manual reviews from Phil or trying to understand complex PHP code, or worse, ignoring or guessing! Although Phil receives every analysis and can overrule the AI decision:
2. Massive Cost Savings
You install a security plugin across 50 Joomla sites. First analysis costs a few cents. Other 49 sites? Instant cached results, zero cost. Managing 100 WordPress sites with WooCommerce? Most files already analyzed by the community—you might only need 2-3 new analyses.
3. Accurate and Trustworthy
Every analysis includes confidence scores (0-100%). 95% confidence “malicious” is very different from 60% “suspicious.” The AI shows you exactly which lines are problematic and why. Admins can mark false positives, correcting the global cache for everyone.
When to Use It
Suspected Breach: Site sending spam? Run Suspect Content audit, use AI to triage 47 flagged files in minutes instead of hours.
Post-Update Verification: Updated a plugin? AI confirms the modified files are legitimate, not tampered with.
Quarterly Reviews: Audit 100 sites. Common files already cached = instant results. Focus your time on new threats.
Pre-Deployment: Verify custom code is secure before going live.
Inherited Sites: 200 flagged files overwhelming you? AI prioritizes the 5 high-risk files, not 195 false positives.
When NOT to Use It
Not 100% Accurate: Sophisticated malware might slip through. Legitimate code might be flagged. Use findings as a guide, verify critical decisions. Phil receives a written report for each AI lookup and will manually override bad AI decisions to prevent mistakes and poisoning the crowdsourced database.
Not for Binary Files: Only works on text-based code (PHP, JS, etc.). No images, PDFs, or compiled binaries.
Large File Limits: Files over 200KB are sampled (first/middle/last sections), potentially missing threats in unsampled sections.
Not a Replacement: Still need regular updates, strong passwords, backups, and security best practices. This is one layer, not the entire solution.
How to Enable
Step 1: Get API keys from Anthropic (for Claude) or OpenAI (for GPT)
Step 2: Navigate to Account → AI Integration in mySites.guru
- Toggle “Enable AI Features”
- Add your API key(s)
- Choose your preferred provider
Step 3: Start analyzing—AI icons appear throughout File Manager, Suspect Content, and Modified Files tools
Pricing
We do not charge you for this integration – like everything in mySites.guru, you pay your monthly subscription and I invest DAILY into the best platform available today – just like I have done since launching in 2012, without a single price increase since we launched! Name me another service that does that?
To use AI analysis, you provide your own API keys from Anthropic (Claude) or OpenAI (GPT). Your data goes directly to your chosen provider using your own account—mySites.guru never charges for AI usage and your API keys are encrypted for your security.
Typical costs: $0.01-0.05 per file analysis, paid directly to Anthropic or OpenAI.
The advantage: Global caching means you rarely pay twice. Same file content across all your sites = one analysis, infinite reuse. Someone else already analyzed that WordPress plugin? You get cached results at zero cost.
For most users managing typical site portfolios, monthly AI costs are minimal—often less than one security audit consultation.
Get Started
AI-Powered Malware Analysis is available now for all mySites.guru users.
1. Log in to your account
2. Enable AI Features in Account → AI Integration
3. Start analyzing files
Questions? Email [email protected]