Viewing 6 posts - 1 through 6 (of 6 total)
  • Author
    Posts
  • June 9, 2014 at 5:16 pm #276467
    DStoeckl

    Hi,

    I checked the theme with antivirus and i got following messages:
    Als ‘Kein Virus’ markieren $sample_slider = json_decode(base64_decode(file_get_contents(dirname(__FILE__).”/Layer …

    Als ‘Kein Virus’ markieren … sample_slider = json_decode(base64_decode(file_get_contents(dirname(__FILE__).”/LayerSlider/{$path}{$ …

    Als ‘Kein Virus’ markieren //print_r(base64_encode(str_replace(‘avia-samples’,’sampleslider’, …

    Als ‘Kein Virus’ markieren … (str_replace(‘avia-samples’,’sampleslider’, base64_decode(file_get_contents(dirname(__FILE__).’/Layer …

    Als ‘Kein Virus’ markieren … ia-samples’,’sampleslider’, base64_decode(file_get_contents(dirname(__FILE__).’/LayerSlider/samplesli ..
    /themes/enfold/config-woocommerce/admin-import.php

    Als ‘Kein Virus’ markieren if(isset($id)) $file = get_attached_file( $id );

    /themes/enfold/functions-enfold.php

    Als ‘Kein Virus’ markieren if(strpos($html, ‘<iframe’) !== false)

    Als ‘Kein Virus’ markieren $created = avia_backend_create_file($stylesheet, $styles, true);

    I think, that no position is infected.What do you say to the marked positions?

    Best regards,
    Daniela

    June 9, 2014 at 6:19 pm #276512
    Josue

    Hey Daniela!

    Which positions exactly are marked as ‘virus’? did you run this test on a fresh copy of Enfold?

    Regards,
    Josue

    June 9, 2014 at 6:26 pm #276516
    DStoeckl

    Hi Josue,

    all of them, which are bold.

    Best regards,
    Daniela

    June 9, 2014 at 6:31 pm #276522
    DStoeckl

    /themes/enfold/config-layerslider/config.php

    $sample_slider = json_decode(base64_decode(file_get_contents(dirname(__FILE__).”/Layer …

    … sample_slider = json_decode(base64_decode(file_get_contents(dirname(__FILE__).”/LayerSlider/{$path}{$ …

    //print_r(base64_encode(str_replace(‘avia-samples’,’sampleslider’, …

    Als ‘Kein Virus’ markieren … (str_replace(‘avia-samples’,’sampleslider’, base64_decode(file_get_contents(dirname(__FILE__).’/Layer …

    … ia-samples’,’sampleslider’, base64_decode(file_get_contents(dirname(__FILE__).’/LayerSlider/samplesli ..

    /themes/enfold/config-woocommerce/admin-import.php

    if(isset($id)) $file = get_attached_file( $id );

    /themes/enfold/functions-enfold.php
    if(strpos($html, ‘<iframe’) !== false)

    $created = avia_backend_create_file($stylesheet, $styles, true);

    That the same messages on my local installation. The bold one, are the marked positions for virus suspicion.

    Thanks,
    Daniela

    June 9, 2014 at 8:25 pm #276600
    Dude

    Hey!

    All of these errors are false positives and there’s nothing we can do about them – I’m sorry. The base64_decode() function can be used to hide malicious code but it’s also a common php function which is not bad/evil per se. I.e. LayerSlider uses this function to encode and decode the slider demo data.

    Cheers!
    Peter

    June 9, 2014 at 10:18 pm #276685
    DStoeckl

    Hey Peter!

    Thank you very very much for your rapid response. :-)

    Cheers!
    Daniela

  • Author
    Posts
Viewing 6 posts - 1 through 6 (of 6 total)
  • The topic ‘Enfold – messages from plugin antivirus’ is closed to new replies.