Virus scanner found an exploit and shut my sites down

My webhost runs virus scans daily, and an exploit warning showed up. It has shut my sites down as a result of the scan. Are you aware of an active exploit in
php.sh.dev.null ?
The file is /matomo/core/CliMulti/Process.php

what should I do?

Here is a screengrab, because I am being prevented from adding a link.

Screenshot 2024-03-31 at 10.53.04 AM1856×1202 178 KB

I’m 99% sure this is 20i.
Could be a false positive, I would email them.

The only thing this 20i virus scanner has ever done for me is shut me down with false positives.

Thanks for your response.

It’s been confirmed as a false positive by the webhost.