• Creator
    Topic
  • #25243

    Debra Ferguson
    Participant
    Been thanked: 0 times

    Html.Exploit.CVE_2016_0108

    From what I read about it, is a Windows only malware that affects IE. I do not know where in the file it is – but I need to be sure it isn’t passed to all the windows users. Please let me know how to get rid of this in the file – I am using this theme live.

Viewing 6 replies - 1 through 6 (of 6 total)
Replies
  • Denzel Chia
    Moderator
    Post count: 3230
    Been thanked: 129 times
    #25256 |

    Hi,

    There is no malware on Alora theme.

    I have used a website security scanner https://sitecheck.sucuri.net// which is created by one of the leading security experts in website security.

    There is no malware detected on http://demo.theme4press.com/alora/
    Please see screenshot of result. http://i.imgur.com/Pxztol3.jpg

    I have also used a desktop malware scanner on alora.zip
    There is also no malware found.
    Please see my screencast. http://screencast-o-matic.com/watch/cDeXcj1bg2

    Maybe, there could be false positive in your malware scanner, or Maybe your computer is affected with malware which is introduced from a different source and it’s affecting files on your computer.

    Your computer malware scanner should provide a way to remove detected malware from your computer, you should use that.

    Delete your affected copy of alora.zip and download a fresh new copy of alora.zip from your account on theme4Press.com

    Sorry, that’s all the information, I can provide for this issue.
    Please hire a site security expert https://sucuri.net/ , if you require further assistance.

    Thank you.

    Denzel Chia
    Moderator
    Post count: 3230
    Been thanked: 129 times
    #25258 |

    I have found this thread on WordPress forum.
    https://wordpress.org/support/topic/malware-warning-on-web-host?replies=18#post-8137844
    Another article.
    http://askubuntu.com/questions/743917/clamav-scan-found-the-virus-html-exploit-cve-2016-0108

    This is a false positive from ClamX AntiVirus, it’s assuming css file code as malware.

    Thank you.

    Denzel Chia
    Moderator
    Post count: 3230
    Been thanked: 129 times
    #25261 |

    Found another related article. ClamX antivirus claiming there is malware in WP Fastest Cache’s css files
    https://wordpress.org/support/topic/malware-attack-6?replies=3#post-8136473

    Yes, this is a false positive, ClamX antivirus is assuming css code as malware.

    Thank you.

    Roman
    Keymaster
    Post count: 2543
    Been thanked: 29 times
    #25267 |

    I’ve run a scan with Panda Antivirus and see no issue, too. Where do you see the message?

    Debra Ferguson
    Participant
    Post count: 4
    Been thanked: 0 times
    #25285 |

    I’ve read all the threads referenced here. The odd thing is it is the newest download of alora.zip that it is found in, not the older ones. It also doesn’t claim it is in the OLD version that I have installed locally. It does not show in the sucuri scan of websites with older version installed. Just wonder what has changed in newer version to cause this.

    Denzel Chia
    Moderator
    Post count: 3230
    Been thanked: 129 times
    #25336 |

    Hi,

    You can use a diff tool to compare all the files at once, to find out the difference.
    For example this tool for mac. https://sourcegear.com/diffmerge/

    Thank you

Viewing 6 replies - 1 through 6 (of 6 total)
You must be logged in to reply to this topic.