Recent Topics

1 Mar 05, 2014 23:35    

My name is Jacques Jeanjean
I use B2evolution with the domain oustal.net hosted by bluehost,
I received the following msg from bluehost administrators. Does anyone understand where this originates and what should I do?
Thks in advance, here is the msg received:

Dear customer,

This notice is to inform you that we have detected malicious code in your website files. We have compiled a list of compromised files on your account, as well as the code injected, below.

In order to maintain a secure hosting environment, we will be automatically correcting these compromised files on your account; however, please be aware that you are responsible for verifying that the content hosted within your account is secure. We strongly advise that you update your installed scripts and software, as outdated scripts and software are the most frequently used method for accessing and gaining control of a targeted account.

If you need assistance updating the software on your hosting account, please do not hesitate to contact our Support department.

Bluehost.com Support
http://www.bluehost.com
Helpdesk: http://helpdesk.bluehost.com/
Toll-Free: (888) 401-4678

The compromised files detected are:

[...]/b2evo_blogs/inc/wp-import.php

The malicious code detected is similar to:

Files with the following contents or MD5SUMs, which contain malicious code:

\$default_action\s*=\s*['"]FilesMan['"]\s*

Sincerely,

Bluehost Administrators

2 Mar 06, 2014 07:17

Hello @jacques,

I guess that file is not part of the standard release of b2evo, maybe your site has been hacked by adding those kind of files. Please notify to your hosting provider and try to find out when and how that file came to your account.

Regards!

3 Mar 06, 2014 10:55

Thks, just changed my pwd with bluehost and will try to reload a clean version of b2evo if I find a way to do that without clearing all my data!
If anyone knows about some b2evolution code sanity check, plz advise. Thks


Form is loading...