Malicious Code Found

  • Resolved Sudhir Dixit

    (@sudhirdixit)


    2 years, 1 month ago

    Hi,

    i have installed plugin on my website, my hosting provider magicworkshost.com reported that following files are having malwares

    ============================
    We have finished the scan for the account “iiddkaoh” and found the below-suspected files(based on Obfuscated-Base64 codes) :

    =====
    FILE-RESULT::’/home/XXXXXXX/public_html/wp-content/plugins/tablepress/libraries/freemius/includes/class-freemius.php’::2024-04-14 12:35:12::MALICIOUS_PROB_VERYHIGH_20
    FILE-RESULT::’/home/XXXXXXX/public_html/wp-content/plugins/tablepress/libraries/freemius/includes/sdk/FreemiusBase.php’::2024-04-14 12:35:13::MALICIOUS_PROB_VERYHIGH_20
    =====

    Please be aware that no one single anti-malware application will catch 100% of all malware on-the-wild, so scans with two or more reputable malware scanners is recommended. We request you download your website to your local machine if it is free from malware and using a paid good antivirus, perform a scan to find more bad files and clean them with the help of your plugin developer.
    ============================

    can you please suggest what to do?

    Regards,
    Sudhir Dixit

Viewing 1 replies (of 1 total)
  • Plugin Author Tobias Bäthge

    (@tobiasbg)

    2 years, 1 month ago

    Hi!

    Thanks for your post and sorry for the trouble!

    This is a false positive. Your scanner is apparently identifying PHP functions for “base64” handling. While some malware software also uses this (to hide itself), this is perfectly fine and valid code here. It’s used to generate strings that can safely be used as URL parameters.

    You can ignore this warning.

    Best wishes,
    Tobias

Viewing 1 replies (of 1 total)

The topic ‘Malicious Code Found’ is closed to new replies.