WordPress.org

Ready to get started?Download WordPress

Forums

Easy adsense plug-in, is it infected? (4 posts)

  1. Fking
    Member
    Posted 2 years ago #

    Today i got this email from my host regarding the main file of the Easy Adsense plug-in (now listed as easy adsense pro):

    Hello ,

    Malicious file /path-to-site/wp-content/plugins/easy-adsenser/easy-adsenser.php found under your user and it has been removed on the server

    ==============================================================================
    /path-to-site/wp-content/plugins/easy-adsenser/easy-adsenser.php: {HEX}gzbase64.inject.unclassed.14.UNOFFICIAL FOUND
    /path-to-site/wp-content/plugins/easy-adsenser/easy-adsenser.php: Removed.
    ==================== ==========================================================

    Regards,
    Support Team

    I'm with version Version 2.99 i think it's the last one under the name Easy Adsense

    anyone else had problems with it?

    Other than it's great plug-in and i'm really happy with it!

  2. ce_kevinw
    Member
    Posted 2 years ago #

    Hello,

    I also use Easy Adsense and just did a scan of it with no red flags. It is possible that it was either a false positive, or your website was hacked at some point and the hacker replaced the default file with a malicious file. Just to be safe I'd change your FTP/cPanel passwords in case it was compromised.

    Kevin

  3. Fking
    Member
    Posted 2 years ago #

    here is what i just got from the support

    "On all our shared servers, we have enabled the Linux Malware Detect (LMD) tool which checks for the files uploaded on the server and if its infected with the malware, deleted it instantly. As per the logs you are receiving, the file "easy-adsenser.php" is infected with the malware due to which the tools deletes it instantly once uploaded to the server. You can't upload that file to the server. Please check for an alternative."

    i tried replacing the file with orignal one from a copy i keep on my pc, it still denies it. So it is either false positive or it comes infected out of the box.

    Too bad i can't contact the author to give us some light on that.

  4. Fking
    Member
    Posted 2 years ago #

    If someone could get that thread to the creator of the script please do.
    He has removed all forms of contacts from his site :(

Topic Closed

This topic has been closed to new replies.

About this Topic