Title: Suspect Malware File Last modified: October 5, 2017 --- # Suspect Malware File * Resolved [jhughesitg](https://wordpress.org/support/users/jhughesitg/) * (@jhughesitg) * [8 years, 8 months ago](https://wordpress.org/support/topic/suspect-malware-file/) * I came across, in your pluggin files, a excutable file called “evalmath.php” located here * wp-content/plugins/tablepress/libraries/evalmath.class.php * I download your pluggin directly from this site and this file does exist as a standard file. * Is this file legit? * This file is a PHP executable file and contains the word ‘eval’ (without quotes) and the word ‘unpack(‘ (without quotes) which is commonly used by hackers. - This topic was modified 8 years, 8 months ago by [jhughesitg](https://wordpress.org/support/users/jhughesitg/). Viewing 3 replies - 1 through 3 (of 3 total) * Plugin Author [Tobias Bäthge](https://wordpress.org/support/users/tobiasbg/) * (@tobiasbg) * [8 years, 8 months ago](https://wordpress.org/support/topic/suspect-malware-file/#post-9559493) * Hi, * thanks for your question, and sorry for the trouble. * No worries, this warning is a false alarm. * The evalmath.class.php is a legitimate file and has been part of TablePress for several years now. It contains the code that is responsible for parsing math formulas in tables. For that, the file also uses those `eval()` and `unpack()` PHP functions. While these might be useful for hackers, they also have legitimate use here. The code is taking precautions to only pass valid parameters to the functions, so that they can not be abused. * Regards, Tobias * Thread Starter [jhughesitg](https://wordpress.org/support/users/jhughesitg/) * (@jhughesitg) * [8 years, 8 months ago](https://wordpress.org/support/topic/suspect-malware-file/#post-9559633) * Thank you for the prompt response and confirmation this file is correct and required. * Plugin Author [Tobias Bäthge](https://wordpress.org/support/users/tobiasbg/) * (@tobiasbg) * [8 years, 8 months ago](https://wordpress.org/support/topic/suspect-malware-file/#post-9559702) * Hi, * no problem, you are very welcome! 🙂 Good to hear that this helped! * Best wishes, Tobias * P.S.: In case you haven’t, please [rate TablePress](https://wordpress.org/support/plugin/tablepress/reviews/) here in the plugin directory. Thanks! Viewing 3 replies - 1 through 3 (of 3 total) The topic ‘Suspect Malware File’ is closed to new replies. * ![](https://ps.w.org/tablepress/assets/icon.svg?rev=3192944) * [TablePress - Tables in WordPress made easy](https://wordpress.org/plugins/tablepress/) * [Frequently Asked Questions](https://wordpress.org/plugins/tablepress/#faq) * [Support Threads](https://wordpress.org/support/plugin/tablepress/) * [Active Topics](https://wordpress.org/support/plugin/tablepress/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/tablepress/unresolved/) * [Reviews](https://wordpress.org/support/plugin/tablepress/reviews/) * 3 replies * 2 participants * Last reply from: [Tobias Bäthge](https://wordpress.org/support/users/tobiasbg/) * Last activity: [8 years, 8 months ago](https://wordpress.org/support/topic/suspect-malware-file/#post-9559702) * Status: resolved