Community Support Forums

— WordPress® ( Users Helping Users ) —
http://www.primothemes.com/forums/

Malware associated with my S2Member plugin

http://www.primothemes.com/forums/viewtopic.php?f=4&t=15479

Page 1 of 1

Malware associated with my S2Member plugin

PostPosted: October 9th, 2011, 7:50 pm
by cwiler
I've checked my website for malware and hacks on: http://sitecheck.sucuri.net/scanner/. My site is clear until I install this S2Member plugin.

Every time I install this plugin on my website and I check it for malware or blacklisting I get this message: Malware found on javascript file:
http://www.inspiredadvantage.com/wp-con ... ABC=1&ver=111003-3546159587
Site error detected.
Details: http://sucuri.net/malware/php-error-fatal-error
<b>Fatal error</b>: Cannot redeclare counter_wordpress() (previously declared in /home/cwiler/InspiredAdvantage.com/wp-settings.php:302) in <b>/home/cwiler/InspiredAdvantage.com/wp-content/plugins/s2member/s2member-o.php(45) : eval()'d code</b> on line <b>233</b><br />

I've tried deleting the files from my FTP and then reinstalling the plugin, however, I keep getting this message when I check it. I've currently got the plugin UNInstalled so my site is clear.

Does anyone know what I can do to fix this?
Thanks!
Christina

Re: Malware associated with my S2Member plugin

PostPosted: October 10th, 2011, 8:10 am
by Eduan
Have you tried using other malware and hacks scanner?
Something like an antivirus (NOD32 is good, has a trial) or ThreatFire (completely free).

P.S. I think it's just for business that they show an error.

Re: Malware associated with my S2Member plugin

PostPosted: October 11th, 2011, 1:12 pm
by Cristián Lávaque
Thanks for reporting this important issue, Christina! I'm forwarding it to Jason for review. :)

Re: Malware associated with my S2Member plugin

PostPosted: October 11th, 2011, 3:58 pm
by Jason Caldwell
Thanks for the heads up on this thread.

Hmm, I suspect that warning is issued because you have PHP "display_errors" enabled on your site. Malware scanners see this as a vulnerability. While it's good to see errors, it's not good for the public to see them. I would suggest that you edit your php.ini file to disable the display_errors configuration value. Please see the recommendation here: http://www.php.net/manual/en/errorfunc. ... lay-errors

Now, why are you getting this error in the first place?
Hmm, I'm not sure. The /s2member-o.php file is designed specifically to load ONLY the s2Member plugin into WordPress, so that your JS/CSS files are optimized even further. Are you running WordPress in a non-standardized location, through a symlink, or anything like that? If this problem continues, please send me a Dashboard login and we'll have a look-see.

Private Dashboard details can be sent through this private contact form:
http://www.s2member.com/contact/
All times are UTC - 5 hours
Page 1 of 1
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
http://www.phpbb.com/