• Call
  • Email
  • 0523800660 (UAE)
  • 02038924700 (UK)
  • +91-844-844-0653 (IND)
  • info@synramtechnolab.com
  • Home
  • About Us
    • Testimonial
    • We are Hiring
  • Services
    • CMS
      • Drupal Development
      • Joomla Development
      • Magento Development
      • WordPress Development
    • Marketing
      • Bing Advertising
      • Google Advertising
      • Internet Marketing
      • Social Media Optimization
      • Digital Marketing
      • SEO Packages
    • Development
      • PHP Custom Web Development
      • Open Source Development
      • Mobile App Development
      • App CMS Development
    • Web Design
      • Flash Website Design
      • Website Designing
      • Website Redesign
  • Portfolio
  • Product
    • Employees Monitoring Software
    • School Management System
    • Hospital Management System
    • E-commerce Grocery Store
    • G-suite Email for Your Domain
  • Blog
  • Contact Us
  • Get Free Quote
+91-94065-80029
whatsapp
Contribute

How to resolve Eval Base64 Malicious Code’s Problem?

Home » Case Study » How to resolve Eval Base64 Malicious Code’s Problem?

This is SynramTechnolab Blog and in this blog, you will learn what is Eval base code, how much dangerous it is for website and most important thing how to remove it. If you read the complete, I can make you sure that, you will get rid of this malicious code.

Introduction

Eval code 64 is a malicious code that is infused by hackers in the site’s code line. This dangerous code is highly infectious and can result in site crash, Google search problems and also infects entire system with malware. An apparent indication of a compromised site is when you see it loading with blank white pages. After SSH’ing into the server you can come up with wp-config.php file. And the thing that come next is eval(base64_decode(“ZXJy….line which confirms that your site has been  compromised. In such cases attackers fuse the malicious code with PHP base64_encode () function. Then they use the base64_decode() function to decode (i.e. un-hide) it. Finally, the PHP eval () function is used to ‘run’ (or EVALuate) the malicious code. They place the malicious line at the top of as many PHP files as they can.

To peek into the fused code copy and paste the whole line into a new PHP file and then replace eval(base64_decode(….)); with echo base64_decode(…);. That will print out the PHP code that the attacker is trying to run.

Danger posed by hackers.

As we have understood that this code is highly dangerous and if not taken preventive measures in time then apart from the website it can spread and infect entire system with malware.

Most often hacker’s intention is to redirect the site to some other domain in order to make money. Suppose if a hacker earns as miniscule amount as $0.01 for redirection to an ad somewhere on the Gigantic World of web then they could earn unimaginable amount of illegitimate money by infecting any popular site.

While dealing with such problem or performing the cleaning process you can temporarily block access to the site by adding the deny, allow command to the top of .htaccess in the root folder of the website. Then allow deny command must deny access from all and allow only from your IP address (if .htaccess file doesn’t already exist, you’ll want to create it).

 

Once it is done you initiated the cleaning process and not let the attacker any chance to infect other files.

Synram Technolab team would like to share the simple Solution to the problem is here. If you see the malicious Eval base code in your website in any file then finding that list of infected files is rather too long editing each file will be too time consuming but thankfully there is an easier way of doing it by running a link specially designed to identify files and remove such malicious code. We have the file which you can run on your browser and that file will work in a way that not only it will remove malicious/infected files but also will show you what were the infected files, there you do not need to search the directory for any files that may contain the malicious code.

After running that link on your browser you can find all .php files in current directory and subdirectories and search for the malicious line and replace it with nothing, doing so you can easily eliminate the malicious code from each line.  You must repeat the process to check any discrepancy.

Here is the sample code:

(you just need to ask for the code either by mailing us or by commenting on this blog, we will give you the code on your email free of cost).

As we all know that ‘prevention is always better than cure’. Believing in this wisdom here are some pointers for you to prevent your website and system from this malicious code.

  • 1. Install security plug-ins. You can opt for plugins like better WP security, Bullet proof security.
  • 2. Rewrite the prefix of database
  • 3. Change the username of wp admin
  • 4. To see the decoded version of eval base code. Check out the decoded code and see what it meant for. Here is the website http://www.base64decode.org/
  • 5. when your website get infected with this code, just close down the website immediately till you fix it by putting underconstruction tag so that Google can not blacklist it. If blacklisted by Google then it tags the website with a warning page , then you will need to take the following steps:

 

What you’ll do:

  1. Confirm you’ve completed the requisite steps:
    • – Verified ownership of your site in Webmaster Tools
    • – Cleaned your site of the hacker’s vandalism
    • – Corrected the vulnerability
    • – Brought your clean site back online
  2. Double-check that your pages are available and clean

To be safe, use either Wget or cURL to safely view pages on your site, such as your homepage and a URL modified by the hacker that should now be clean. If these URLs return content free of the hacker’s damage (and you’re confident that same applies to the rest of the pages on your site), it’s time to request a review.

3. Here is the last steps to follow:

a. Click the link for the site which will take you to the Dashboard for the site

b. Click Diagnostics, and then click Malware.
c. Click the link “Request a Review” and submit the requested information.

or if the link is not there try

a. Click the link [ More Details ] from the red malware warning bar
b. Click the link “Request a Review” and submit the requested information.

Recent Posts
  • 6 Perfect Mobile App Ideas which are yet to Explore 2019
  • A Free Tool for Increasing Your Website Speed
  • Top Level Domain Extensions which Suits to Your Business
  • 5 Ways to Stop Indexing Directories by Crawlers
  • Best SEO Strategies for E-Commerce Websites
  • What Makes You Different from Your Competitors?
  • Google Closing Its Inbox App
  • How to Prevent Malware Attacks
  • Why Your Business Needs a Website?
  • Internal and External Linking That Google Will Love in Your Blog Content
  • Local Business Marketing SEO Tips 2019
  • WhatsApp Business API Launched for Betterment of Customer Service
  • Boost Traffic & Gain More Customers
  • Social Media Helps Political Campaigns
  • Shopify: Set up your online store in few clicks
  • Quick SEO Tips for All Entrepreneurs
  • 4 Easy Steps to Setup Facebook Remarketing
  • Essential Ways for Voice Search Optimization
  • Leveraging Brand Promotion Through Employee Advocacy Program
  • How to Make Your Website Secure from Cyber Attacks So Hacker Can’t Hack It?
Categories
  • Business
  • Case Study
  • Communication
  • Digital Marketing
  • Search Engine Optimization
  • Social Media Marketing
  • Uncategorized
  • Website Development

GET IN TOUCH NOW. WE ARE HERE TO HELP!



Blog

  • How to Improve Website Ranking?
  • CodeIgniter – A Powerful PHP Framework
  • Is Your Website Still Hurting from Penguin Update?
  • E-Commerce Design and it’s Benefits

Our Services

  • Logo Design
  • Website Development
  • Our IT Company
  • Website Design
  • Software Enterprise
  • Our Blog

Web Design

  • Website Design
  • Flash Website Design
  • Website Redesign
  • Website Maintenance

CONTACT US

  • Synram Technolab
    India:
    Office 1: G-8 Vyankateshwaram, Patel Nagar, City Center
    Office 2: Gurugram, Sector 44, 91 Springboard
    India: +91-91111-36-555, +91-844-844-0653
    Dubai:
    Office: Metropolis Tower, Business bay, Dubai
    Dubai : 0523800660

Content Management System

  • WordPress Development
  • Drupal Development
  • Joomla Development
  • Magento Development

Policies

  • Privacy Policy
  • Refund Policy
  • Terms of use
  • Site Map

Web Development

  • Open Source Development
  • PHP Custom Web Development

Internet Marketing

  • Google Advertising
  • Bing Advertising
  • Search Engine Optimization
  • Social Media Optimization
About Your Website About Your Website Shopify DMCA
STAY CONNECTED
Facebook Twitter Pinterest Linkedin Linkedin Linkedin Linkedin
WEBMASTER: seo@synram.co
PAYMENT OPTIONS
Payment Options
Other Useful Links
Copyright ©2011-19 All Rights Reserved. Rated 4.9/5 4.9 Rating based on Google Plus reviews and rating. Check out here! Synram Technolab
Mobile App Development Company in Gurgaon | Gmail for Business Pricing India | List of Mobile Application Development Companies in Dubai | Mobile App Development Company Dubai Future Work Technologies | Web Designing Companies in Sharjah | Ecommerce Web Design Companies in Dubai | Web Development Companies in Dubai Internet City | Web Developing Company Dubai | Information Systems Used in Schools | School Management Software Price List in India | Price of School ERP Software in India | School Management System Dashboard Free Download | Mobile App Development Company in Gwalior | Website Development Company in Guna | Website Design & Development Company in Jhansi | Website Development Company Aberdeen | Website Development Company Armagh | Website Development Company Bangor | Website Development Company BathWebsite Development Company Belfast | Website Development Company Birmingham | Website Development Company Bradford Website Development Company Brighton | Website Development Company Hove | Website Development Agency BristolWebsite Development Company Cambridge | Website Development Company Canterbury | Website Development Company CardiffWebsite Development Company Borehamwood | Website Development Company WimbledonWebsite Development Company Hertford | Website Development Company Manchester | Website Development Company Greater London | Website Development Company West Midlands | Website Development Company | Software Development Company | Logo Design Company | Website Design Company | Software Company Gwalior | IT Company in Gwalior | Website Development Company Gurugram, Haryana | Best Web Development Company in Gurgaon | Website Development Company in Indore
Website Development Company in Sagar | Website Development Company in Jhansi | Website Development Company in Dabra | Website Development Company Hertfordshire | Website Development Company Canary WharfWebsite Development Company Lewisham | Website Development Company Fulham | Website Development Company ActonWebsite Development Company Edgware | Website Development Company Hayes | Website Development Company HarlingtonWebsite Development Company Southall | Website Development Company East London | Website Development Company South London | Website Development Company South West LondonWebsite Development Company West London | Website Development Company North London | Website Development Company Southern HertfordshireWebsite Development Company Chelmsford | Website Development Company Essex
Website Development Company in Agra | Website Development Company Ealing Broadway | Website Development Company BeckenhamWebsite Development Company Bedfordshire | Website Development Company Birmingham City Centre | Website Development Company BraintreeWebsite Development Company Brentwood | Website Development Company Bromley | Website Development Company Chelsea | Website Development Company ClaphamWebsite Development Company Docklands | Website Development Company East Ham | Website Development Company England and WalesWebsite Development Company Finchley | Website Development Company Hammersmith | Website Development Company HillingdonWebsite Development Company Ickenham
Website Development Company Kensington | Website Development Company Luton | Website Development Company Manor ParkWebsite Development Company Putney | Website Development Company Royston | Website Development Company Ruislip | Website Development Company South East LondonWebsite Development Company Southwark | Website Development Company Stratford upon Avon | Website Development Company Streatham | Website Development Company TootingWebsite Development Company Tunbridge Wells | Website Development Company Uxbridge | Website Development Company Wandsworth | Website Development Company WareWebsite Development Company Waterloo | Website Development Company Whitechapel