I use CleanTalk security and I keep getting nagged about possible malware in common.php path below. I remember a while back that at one point and old version was fixed, I think this might be a false positive.
/wp-content/plugins/gravityforms/common.php