Anti-Malware Security and Brute-Force Firewall

Version Description

Improved the JavaScript in the new Brute-Force login patch so that it works with caching enabled on the login page.

Release Info

Developer	scheeeli
Plugin	Anti-Malware Security and Brute-Force Firewall
Version	4.15.41
Comparing to
See all releases

Code changes from version 4.15.40 to 4.15.41

Files changed (2) hide show

index.php +11 -2
readme.txt +8 -2

index.php CHANGED Viewed

	@@ -8,7 +8,7 @@ Author URI: http://wordpress.ieonly.com/category/my-plugins/anti-malware/
8	Contributors: scheeeli, gotmls
9	Donate link: https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=QZHD8QHZ2E7PE
10	Description: This Anti-Virus/Anti-Malware plugin searches for Malware and other Virus like threats and vulnerabilities on your server and helps you remove them. It's always growing and changing to adapt to new threats so let me know if it's not working for you.
11	- Version: 4.15.40
12	*/
13	if (isset($_SERVER["DOCUMENT_ROOT"]) && ($SCRIPT_FILE = str_replace($_SERVER["DOCUMENT_ROOT"], "", isset($_SERVER["SCRIPT_FILENAME"])?$_SERVER["SCRIPT_FILENAME"]:isset($_SERVER["SCRIPT_NAME"])?$_SERVER["SCRIPT_NAME"]:"")) && strlen($SCRIPT_FILE) > strlen("/".basename(__FILE__)) && substr(__FILE__, -1 * strlen($SCRIPT_FILE)) == substr($SCRIPT_FILE, -1 * strlen(__FILE__)))
14	include(dirname(__FILE__)."/safe-load/index.php");
	@@ -1215,10 +1215,19 @@ showhide("pause_button", true);'."\n/{$lt}!--"."/";
1215
1216	function GOTMLS_login_form($form_id = "loginform") {
1217	$sess = time();
1218	- ~~echo '<input type="hidden" name="session_id" value="'.substr(~~$~~sess,~~ ~~4).'"><input type~~=~~"hidden"~~ ~~id="offset_id" value="0" name="sess'.substr~~(~~$sess, 4).'~~"~~><script type="text/javascript">'~~.~~"\nvar GOTMLS_login_offset~~ = ~~new Date();\nvar GOTMLS_login_offset_start~~ = ~~GOTMLS_login_offset.getTime() -~~ "~~.$sess."000;\nfunction set_offset_id(~~) {\n\tGOTMLS_login_offset = new Date();\n\tif (form_login = document.getElementById('offset_id'))\n\t\tform_login.value = GOTMLS_login_offset.getTime() - GOTMLS_login_offset_start;\n\tsetTimeout(set_offset_id, 15673);\n}\nset_offset_id();\n</script>\n";

1219	}
1220	add_action("login_form", "GOTMLS_login_form");
1221








1222	function GOTMLS_set_plugin_action_links($links_array, $plugin_file) {
1223	if ($plugin_file == substr(__file__, (-1 * strlen($plugin_file))) && strlen($plugin_file) > 10)
1224	$links_array = array_merge(array('<a href="'.admin_url('admin.php?page=GOTMLS-settings').'"><span class="dashicons dashicons-admin-settings"></span>'.GOTMLS_Scan_Settings_LANGUAGE.'</a>'), $links_array);


8	Contributors: scheeeli, gotmls
9	Donate link: https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=QZHD8QHZ2E7PE
10	Description: This Anti-Virus/Anti-Malware plugin searches for Malware and other Virus like threats and vulnerabilities on your server and helps you remove them. It's always growing and changing to adapt to new threats so let me know if it's not working for you.
11	+ Version: 4.15.41
12	*/
13	if (isset($_SERVER["DOCUMENT_ROOT"]) && ($SCRIPT_FILE = str_replace($_SERVER["DOCUMENT_ROOT"], "", isset($_SERVER["SCRIPT_FILENAME"])?$_SERVER["SCRIPT_FILENAME"]:isset($_SERVER["SCRIPT_NAME"])?$_SERVER["SCRIPT_NAME"]:"")) && strlen($SCRIPT_FILE) > strlen("/".basename(__FILE__)) && substr(__FILE__, -1 * strlen($SCRIPT_FILE)) == substr($SCRIPT_FILE, -1 * strlen(__FILE__)))
14	include(dirname(__FILE__)."/safe-load/index.php");

1215
1216	function GOTMLS_login_form($form_id = "loginform") {
1217	$sess = time();
1218	+ $ajaxURL = admin_url("admin-ajax.php?action=GOTMLS_logintime&GOTMLS_sess=");
1219	+ echo '<input type="hidden" name="session_id" value="'.substr($sess, 4).'"><input type="hidden" id="offset_id" value="0" name="sess'.substr($sess, 4).'"><script type="text/javascript">'."\nvar GOTMLS_login_offset = new Date();\nvar GOTMLS_login_script = document.createElement('script');\nGOTMLS_login_script.src = '$ajaxURL'+GOTMLS_login_offset.getTime();\n//GOTMLS_login_script.onload = set_offset_id();\ndocument.head.appendChild(GOTMLS_login_script);\n</script>\n";
1220	}
1221	add_action("login_form", "GOTMLS_login_form");
1222
1223	+ function GOTMLS_ajax_logintime() {
1224	+ @header("Content-type: text/javascript");
1225	+ $sess = (false && isset($_GET["GOTMLS_sess"]) && is_numeric($_GET["GOTMLS_sess"])) ? $_GET["sess"] : time();
1226	+ die("\n//Permission Error: User not authenticated!\nvar GOTMLS_login_offset = new Date();\nvar GOTMLS_login_offset_start = GOTMLS_login_offset.getTime() - ".$sess."000;\nfunction set_offset_id() {\n\tGOTMLS_login_offset = new Date();\n\tif (form_login = document.getElementById('offset_id'))\n\t\tform_login.value = GOTMLS_login_offset.getTime() - GOTMLS_login_offset_start;\n\tsetTimeout(set_offset_id, 15673);\n}\nset_offset_id();");
1227	+ }
1228	+ add_action('wp_ajax_nopriv_GOTMLS_logintime', 'GOTMLS_ajax_logintime');
1229	+ add_action('wp_ajax_GOTMLS_logintime', 'GOTMLS_ajax_logintime');
1230	+
1231	function GOTMLS_set_plugin_action_links($links_array, $plugin_file) {
1232	if ($plugin_file == substr(__file__, (-1 * strlen($plugin_file))) && strlen($plugin_file) > 10)
1233	$links_array = array_merge(array('<a href="'.admin_url('admin.php?page=GOTMLS-settings').'"><span class="dashicons dashicons-admin-settings"></span>'.GOTMLS_Scan_Settings_LANGUAGE.'</a>'), $links_array);

readme.txt CHANGED Viewed

	@@ -5,8 +5,8 @@ Author URI: http://wordpress.ieonly.com/category/my-plugins/anti-malware/
5	Contributors: scheeeli, gotmls
6	Donate link: https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=QZHD8QHZ2E7PE
7	Tags: anti-malware, security, scanner, automatic, repair, remove, malware, virus, threat, hacked, malicious, infection, timthumb, exploit, block, brute-force, wp-login, patch, antimalware, revslider, Revolution Slider
8	- Version: 4.15.40
9	- Stable tag: 4.15.40
10	Requires at least: 3.3
11	Tested up to: 4.3.1
12
	@@ -94,6 +94,9 @@ sucuri.net caches their scan results and will not refresh the scan until you cli
94
95	== Changelog ==
96



97	= 4.15.40 =
98	* Improved the Brute-Force login patch with custom fields and JavaScript.
99	* Added a Save button to that Scan Settings page.
	@@ -355,6 +358,9 @@ sucuri.net caches their scan results and will not refresh the scan until you cli
355
356	== Upgrade Notice ==
357



358	= 4.15.40 =
359	Improved the Brute-Force login patch with custom fields and JavaScript, added a Save button to that Scan Settings page, and fixed a bug in the XMLRPC Patch.
360


5	Contributors: scheeeli, gotmls
6	Donate link: https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=QZHD8QHZ2E7PE
7	Tags: anti-malware, security, scanner, automatic, repair, remove, malware, virus, threat, hacked, malicious, infection, timthumb, exploit, block, brute-force, wp-login, patch, antimalware, revslider, Revolution Slider
8	+ Version: 4.15.41
9	+ Stable tag: 4.15.41
10	Requires at least: 3.3
11	Tested up to: 4.3.1
12

94
95	== Changelog ==
96
97	+ = 4.15.41 =
98	+ * Improved the JavaScript in the new Brute-Force login patch so that it works with caching enabled on the login page.
99	+
100	= 4.15.40 =
101	* Improved the Brute-Force login patch with custom fields and JavaScript.
102	* Added a Save button to that Scan Settings page.

358
359	== Upgrade Notice ==
360
361	+ = 4.15.41 =
362	+ Improved the JavaScript in the new Brute-Force login patch so that it works with caching enabled on the login page.
363	+
364	= 4.15.40 =
365	Improved the Brute-Force login patch with custom fields and JavaScript, added a Save button to that Scan Settings page, and fixed a bug in the XMLRPC Patch.
366

Anti-Malware Security and Brute-Force Firewall - Version 4.15.41

Version Description

Release Info

Code changes from version 4.15.40 to 4.15.41