6 {{ upvoteCount | shortNum }}
6 {{ upvoteCount | shortNum }}

Optimize Press - what is: base64_decode?

by listerdl
5 replies
I have used OP many times now - and its great.

I notice thought that even in a fresh install (from the OP site) I run a virus scan and this is flagged up: base64_decode

A quick google search and it seems that it can be a backdoor/ trojan...

Anyone have any idea or am I just being paranoid here? Thanks...

This is the "bad" php code:

Code:
$imgData = base64_decode("R0lGODlhUAAMDDP8AAP///yH5BAADD8ALA
Thanks, Im keen to solve this riddle...
#base64decode #optimize #press
  • Profile picture of the author Kingfish85
    Is that the entire string? Could you post the entire string you see?
    Signature

    |~| VeeroTech Hosting - sales @ veerotech.net
    |~| High Performance CloudLinux & LiteSpeed Powered Web Hosting
    |~| cPanel & WHM - Softaculous - Website Builder - R1Soft - SpamExperts
    |~| Visit us @veerotech Facebook - Twitter - LinkedIn

    {{ DiscussionBoard.errors[6735542].message }}
  • Profile picture of the author listerdl
    yup that's it

    that's what the AVirus picked up....

    Ive done more research on this and I think that this is some sort of protocol to send data - not necessarily an indication of a hack - apparently (?)

    Anyways it caught my attention and I just want to rule it out - thanks
    {{ DiscussionBoard.errors[6735547].message }}
  • Profile picture of the author UMS
    Originally Posted by listerdl View Post

    A quick google search and it seems that it can be a backdoor/ trojan...
    Indeed it can be a sign of a trojan, but remember that most of the scanners do a pretty generic scan, so it will potentially pick up legitimate code.

    I would be highly surprised if there was any bad stuff in OP. My rough guess is that it is code related to licencing, which needs to be encrypted to stop people ripping off OP.
    Signature
    {{ DiscussionBoard.errors[6735560].message }}
  • Profile picture of the author bloodyuber
    usually it's for premium stuff that a company wants to make a hard time for crackers to crack and usually it's a base64 encrypted source code so a function needs to decrypt a source code at run time and then use the outcome in some sort.
    {{ DiscussionBoard.errors[6735580].message }}
  • Profile picture of the author blackhawkup
    Banned
    It's probably nothing to be worried about...if you purchased OP.

    BUT

    in a lot cases, hackers use that code to infect your website with encrypted code thats terribly hard to locate and remove. this code can be used to place ads on your site and change the behaviors and actions of your site as well.

    I bought a site off of themeforest once. I had troubles with the theme so i ignorantly gave the guy access to my site to make the changes for me.... oh he made changes alright.

    He infected my site with multiple base 64 codes.

    I had to delete the entire site..

    Anyway...if you have a "legit copy" of OP you should have no worries. But if you have an illegal copy you might want to be cautious.
    {{ DiscussionBoard.errors[6735587].message }}

Trending Topics