Plugin Author
Eli
(@scheeeli)
It looks like that script has been removed. Maybe you were looking at cache because it is clean now.
Please let me know if you are still seeing this and on what page so that I can confirm. Maybe send me a screenshot of it too, so that I know what you are looking at.
Dear Eli
in your opinion …Did you ever saw that plugin all clear and database clear too(just saw it from web-source)…but still has redirect to another website… exclude cache problem. is it multiple website cause this problem ?
Plugin Author
Eli
(@scheeeli)
PROBLEM SOLVED! Everyone, i want to give a special thanks to @foxmulder520 for actually posting the code that was found in the database. This is what I needed so that I could add this threat to my definition updates. Now my Anti-Malware plugin can remove this injected code from your database content for you automatically. Just make sure you download the latest definition updates before you run the scan again 😉
And if you find any more malicious code that my plugin is still missing then please post it or send it directly to my email so that I can get it added to my definition updates ASAP. Thanks!
@scheeeli
Eli~
it’s useless…..can’t find the malware.
and just get the message…
Read/Write Errors
X/‧‧‧‧‧wp-includes/js/dist/date.js
X/‧‧‧‧‧wp-includes/js/dist/date.min.js
pic
-
This reply was modified 5 years, 2 months ago by foxmulder520.
Plugin Author
Eli
(@scheeeli)
Are you still talking about karawalker here because you still have definition update version J15Hc and the newest definition update is version J188Y. Like I said, make sure you download the latest definition updates before you run the scan again.
Also, I could not see anything relevant or helpful in that screenshot you posted. If you want to send me a screenshot with your key and version details on it you can send it directly to my email address:
eli AT gotmls DOT net
@scheeeli
in fact..I use this one to try it
here
if you need database Permission I can sent it for you
-
This reply was modified 5 years, 2 months ago by foxmulder520.
Plugin Author
Eli
(@scheeeli)
Any detail you don’t want public you can send it directly to my email address:
eli AT gotmls DOT net
Moderator
Jan Dembowski
(@jdembowski)
Forum Moderator and Brute Squad
Side note: Please do not post malware samples in these forums. Those will get remove when found.
Plugin Author
Eli
(@scheeeli)
Please note: This topic is resolved because the malware discussed here is already in my definition updates, so my plugin will find it and remove it for you.
If you have any samples of malware code that is not found by my plugin then you can send it directly to me and I will add it to my definition updates ASAP:
eli AT gotmls DOT net
The topic is 4 months old… closing it.