My name is Jacques Jeanjean
I use B2evolution with the domain oustal.net hosted by bluehost,
I received the following msg from bluehost administrators. Does anyone understand where this originates and what should I do?
Thks in advance, here is the msg received:
Dear customer,
This notice is to inform you that we have detected malicious code in your website files. We have compiled a list of compromised files on your account, as well as the code injected, below.
In order to maintain a secure hosting environment, we will be automatically correcting these compromised files on your account; however, please be aware that you are responsible for verifying that the content hosted within your account is secure. We strongly advise that you update your installed scripts and software, as outdated scripts and software are the most frequently used method for accessing and gaining control of a targeted account.
If you need assistance updating the software on your hosting account, please do not hesitate to contact our Support department.
Bluehost.com Support
http://www.bluehost.com
Helpdesk: http://helpdesk.bluehost.com/
Toll-Free: (888) 401-4678
The compromised files detected are:
[...]/b2evo_blogs/inc/wp-import.php
The malicious code detected is similar to:
Files with the following contents or MD5SUMs, which contain malicious code:
\$default_action\s*=\s*['"]FilesMan['"]\s*
Sincerely,
Bluehost Administrators
General Support
b2evolution CMS Support Forums
Hello @jacques,
I guess that file is not part of the standard release of b2evo, maybe your site has been hacked by adding those kind of files. Please notify to your hosting provider and try to find out when and how that file came to your account.
Regards!