Malicious files detected | ww.wp.xz.cn

Resolved Pravin
(@pravinlpatel)

9 years, 7 months ago
I’ve got notification from my Hosting Company that, As part of our routine monitoring, we have observed that some of the files hosted on this server belonging to ‘Mydomain’ hosted under your account, has some malicious files hosted.
In order to prevent blacklisting of our service with various service providers, we have blocked outbound port 80, 443, 587 and 465 for this domain name as a precautionary measure. Here are the details of the files that were detected to be malicious.

wp-content/plugins/ewww-image-optimizer/binaries/cwebp-linux

Can you please advice what’s going wrong here ?

Plugin URL : https://ww.wp.xz.cn/plugins/ewww-image-optimizer/
- This topic was modified 9 years, 7 months ago by Pravin.

Viewing 4 replies - 1 through 4 (of 4 total)

Plugin Author nosilver4u
(@nosilver4u)

9 years, 7 months ago

https://ww.wp.xz.cn/support/topic/virus-found-in-cwebp-linux-and-file-renamed-by-provider/

Luke Cavanagh
(@lukecavanagh)

9 years, 7 months ago

@pravinlpatel

That file is included in the binaries folder of the plugin.

https://plugins.svn.ww.wp.xz.cn/ewww-image-optimizer/tags/3.0.2/binaries/
https://github.com/nosilver4u/ewww-image-optimizer/blob/master/binaries/cwebp-linux

It is just an executable file for Linux for cwebp, which is used to convert images to webp format.

https://developers.google.com/speed/webp/docs/cwebp

ivnat
(@ivnat)

9 years, 7 months ago

I received the same notification from Hostgator this morning. Sigh.

Plugin Author nosilver4u
(@nosilver4u)

9 years, 7 months ago

Clamav has released updated definitions, if anyone is still seeing this message, it is because your server hasn’t updated yet.

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘Malicious files detected’ is closed to new replies.

Tags

cwebp

4 replies
4 participants
Last reply from: nosilver4u
Last activity: 9 years, 7 months ago
Status: resolved