Malware Detected?

  • Resolved joeconsiglio

    (@joeconsiglio)


    5 years ago

    Hi there,

    I’m developing a website with your excellent wp custom admin interface plugin but my hosting company has just been in touch saying the following:
    ——————————————
    During a routine daily scan of this server we have identified file(s) within the account that appear to be compromised, based upon pattern matches of currently known malware.

    Account:acornpixusco
    Server:dedicated.dcointernet.co.uk
    Script(s):
    —————————————–
    {HEX}Malware.Expert.generic.eval.base64.decode.41 : /public_html/wp-content/plugins/wp-custom-admin-interface/wp-custom-admin-interface.php
    ————————————

    Any ideas what or why this is?

    Thanks

    Joe

Viewing 5 replies - 1 through 5 (of 5 total)
  • Plugin Author Northern Beaches Websites

    (@northernbeacheswebsites)

    5 years ago

    Hi @joeconsiglio,

    This has been raised before. This is not an issue at all.

    Thanks,

    grafdesign15

    (@grafdesign15)

    4 years, 9 months ago

    Hi

    My hosting has just been deactivated for this reason. Base64 svg is the cause.

    Plugin Author Northern Beaches Websites

    (@northernbeacheswebsites)

    4 years, 9 months ago

    Hi @grafdesign15,

    As mentioned in the past, this is not a security issue even though your host might have flagged it as a potential issue. You either need to talk to them or just remove that part of the code from the plugin. All the code does is give our plugin a custom SVG icon on our menu item.

    You can make line 30 of our main plugin file:

    $menu_icon_svg = ”;

    and you will be ok with your host. Thanks,

    grafdesign15

    (@grafdesign15)

    4 years, 9 months ago

    It would be better to find better path. Would be a shame if the plugin would lose its popularity due to this small matter.

    Thank you for this fine plugin and your continued support.

    Plugin Author Northern Beaches Websites

    (@northernbeacheswebsites)

    4 years, 9 months ago

    Hi @grafdesign15,

    At the time of writing the plugin I couldn’t figure out a better way of having a custom image because WordPress core didn’t provide too many options. I am sure there’s some way to do this, but to be honest, this doesn’t keep me up at night if a few hosts mark this as a false positive in security scans. Thanks 🙂

Viewing 5 replies - 1 through 5 (of 5 total)

The topic ‘Malware Detected?’ is closed to new replies.