Title: ACTIVE MALWARE DETECTED
Last modified: December 3, 2019

---

# ACTIVE MALWARE DETECTED

 *  Resolved [imtanuki3](https://wordpress.org/support/users/imtanuki3/)
 * (@imtanuki3)
 * [6 years, 6 months ago](https://wordpress.org/support/topic/active-malware-detected/)
 * My site was just shutdown by my hosting service.
 * {HEX}Malware.Expert.generic.eval.base64.decode.41 : /home/***/public_html/***/
   dev03/wp-content/plugins/wp-custom-admin-interface/wp-custom-admin-interface.
   php
 * I’m assuming this is your product as the malware was detected within minutes 
   of installing your plugin and the dir is consistent with your plugin.
 * It IS possible that the hosting service has their malware detection mis-configured
   and I’m chasing that down right now, but I suspect they are correct.
 * I will update this as I get more info…if they are correct, I think I’m obligated
   to post a review.

Viewing 3 replies - 1 through 3 (of 3 total)

 *  Plugin Author [Northern Beaches Websites](https://wordpress.org/support/users/northernbeacheswebsites/)
 * (@northernbeacheswebsites)
 * [6 years, 6 months ago](https://wordpress.org/support/topic/active-malware-detected/#post-12198868)
 * Hi [@imtanuki3](https://wordpress.org/support/users/imtanuki3/),
 * This is not malware. It’s a false positive. Thanks,
 *  [yoga50mas](https://wordpress.org/support/users/yoga50mas/)
 * (@yoga50mas)
 * [6 years, 6 months ago](https://wordpress.org/support/topic/active-malware-detected/#post-12202220)
 * ola que fazer agora se Malware foi detectado eu tenho um site que estava montando
   já no final para compra do produto por favor diga me que fazer preciso retorna
   no meu site
 *  Thread Starter [imtanuki3](https://wordpress.org/support/users/imtanuki3/)
 * (@imtanuki3)
 * [6 years, 6 months ago](https://wordpress.org/support/topic/active-malware-detected/#post-12202326)
 * [@northernbeacheswebsites](https://wordpress.org/support/users/northernbeacheswebsites/)
 * I just received a copy of the flagged text and decoded it myself and it was apparent
   that it was xml for svg path settings.
 * **My apologies for the false alarm**. You can contact me privately or feel free
   to escalate this matter directly with Green Geeks. I think they’re trying to 
   lock down exposure to malware, and I’m online with them to see if they can be
   a little less reactive when they see base64 code.
 * Shutting down an entire domain seems a bit extreme, esp since I was using your
   plugin in a dev subdomain.

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘ACTIVE MALWARE DETECTED’ is closed to new replies.

 * ![](https://ps.w.org/wp-custom-admin-interface/assets/icon.svg?rev=1656274)
 * [WP Custom Admin Interface](https://wordpress.org/plugins/wp-custom-admin-interface/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/wp-custom-admin-interface/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/wp-custom-admin-interface/)
 * [Active Topics](https://wordpress.org/support/plugin/wp-custom-admin-interface/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/wp-custom-admin-interface/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/wp-custom-admin-interface/reviews/)

 * 3 replies
 * 3 participants
 * Last reply from: [imtanuki3](https://wordpress.org/support/users/imtanuki3/)
 * Last activity: [6 years, 6 months ago](https://wordpress.org/support/topic/active-malware-detected/#post-12202326)
 * Status: resolved