Bas
Forum Replies Created
-
Forum: Fixing WordPress
In reply to: Malicious code?Ok that clears things up! Ill make sure not to include any obfuscated code if I ever develop a theme, just to prevent these kinda discussions/worries π
Forum: Fixing WordPress
In reply to: Malicious code?Ok in that case, could a moderator remove the dev’s name from my post earlier? I dont want to give anyone a bad name.
Forum: Fixing WordPress
In reply to: Malicious code?Those are some very helpful links esmi thank you.
Superdave300, after checking google you seem to be right, but I still dont understand why a developer needs to use a obfuscated version.Forum: Fixing WordPress
In reply to: Malicious code?Ok, im quite new to this obfuscated code, this code is in a plugin used by the theme (fancybox), I think it could be used to protect the code from being copied? I now simply removed these files from my server, because I dont use this plugin. Would that be sufficient?
And its not using the eval(base64_decode, but eval(function( . Im just being extra careful because my site has been hacked over and over lately, and I wasnt able to find out why. Today I did a full reupload after completely wiping the files from the server, so if it happens again it means there is or a backdoor somewhere, a leak in the software or a problem at my host.
Not using this theme would mean i have to set up a completely new website, which would currently take too much time for me.
Forum: Fixing WordPress
In reply to: Malicious code?I just got a response back, he says its used by millions and def not malicious. I did some more research on the file, and it seems to be used a lot. Could you explain me why you think its malicious? Because now I dont know who to believe…
Forum: Fixing WordPress
In reply to: Malicious code?Ok, I just wanted a second opinion on this. I just contacted the developers.
Forum: Fixing WordPress
In reply to: Malicious code?the theme is bought at themeforest.net, developers are themeprovince.
Forum: Fixing WordPress
In reply to: Malicious code?Its not a free theme, its a premium wordpress theme bought at a respected website. So Im pretty sure the developer will care.
Forum: Fixing WordPress
In reply to: Malicious code?Ok thank you, yes it came as part of my theme, and its also in the source theme files. Could you maybe explain me why this is malicious? (so I can tell that to the theme developer)
Forum: Fixing WordPress
In reply to: Malicious code?Thank you for your response. Yes I know the base64_decode code is always malicious, but this code block doesn’t contain base64_decode, but only the eval command with lots of random characters.
Sorry for posting this explicitly in code blocks, here is the paste bin:
Thank you in advance
Forum: Hacks
In reply to: "JS/Agent" warnings in AVG – nightmare hack in multiple WordPress sitesI have exactly the same problem, Ive just been hacked for the fourth time and I cant find out the cause of this. Maybe its a good idea to post our plugins and theme here so we can compare them?
My plugins:
– Akismet
– BackWPup
– Google Analytics for WordPress
– Google XML Sitemaps
– Hello Dolly
– SEO friendly images
– TimThumb Vulnerability Scanner
– Wordbooker
– WordPress SEO
– WP-SimpleViewer
– WP Maintenance ModeMy theme:
Village from Theme Province
I really hope we can solve this together, because its driving me crazy :p
Forum: Plugins
In reply to: [AntiVirus] [Plugin: AntiVirus] You should check .js files alsoIve had the exact same code injected in my JS files, Ive been able to clean all my files. But Im really wondering how I can prevent this from happening in the future and how this could’ve happened. Is there anyone who could provide me more information about this?