Home Forums Basel support forum WEB SCRIPTS ERROR

WEB SCRIPTS ERROR

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • September 8, 2017 at 9:04 am #19033

    joyceloh
    Participant

    Hi,

    Is there an updated version to install?

    Our engineers were conducting a routine check and have identified that your website is possibly infected with scripts that engage in malicious activity. Kindly have a check on the below suspicious file locations:

    ===============
    File Hit List:

    /home/cafekg168/public_html/wp-content/plugins/Login-wall-byTiE/login_wall.php
    /home/cafekg168/public_html/wp-content/plugins/Login-wall-byTiE/jb.php
    /home/cafekg168/public_html/wp-content/themes/basel/single.php
    /home/cafekg168/public_html/wp-content/themes/basel/sidebar.php
    /home/cafekg168/public_html/wp-content/themes/basel/searchform.php
    /home/cafekg168/public_html/wp-content/themes/basel/content.php
    /home/cafekg168/public_html/wp-content/themes/basel/index.php
    /home/cafekg168/public_html/wp-content/themes/basel/woocommerce/content-product_cat.php
    /home/cafekg168/public_html/wp-content/themes/basel/woocommerce/product-searchform.php
    /home/cafekg168/public_html/wp-content/themes/basel/woocommerce/archive-product.php
    /home/cafekg168/public_html/wp-content/themes/basel/woocommerce/searchform-ajax.php
    /home/cafekg168/public_html/wp-content/themes/basel/woocommerce/single-product.php
    /home/cafekg168/public_html/wp-content/themes/basel/woocommerce/content-quick-view.php
    /home/cafekg168/public_html/wp-content/themes/basel/woocommerce/content-product.php
    /home/cafekg168/public_html/wp-content/themes/basel/woocommerce/content-single-product.php
    /home/cafekg168/public_html/wp-content/themes/basel/inc/vc-config.php
    /home/cafekg168/public_html/wp-content/themes/basel/inc/settings.php
    /home/cafekg168/public_html/wp-content/themes/basel/inc/shortcodes.php
    /home/cafekg168/public_html/wp-content/themes/basel/inc/functions.php
    /home/cafekg168/public_html/wp-content/themes/basel/inc/widgets.php
    /home/cafekg168/public_html/wp-content/themes/basel/inc/template-tags.php
    /home/cafekg168/public_html/wp-content/themes/basel/inc/theme-setup.php
    /home/cafekg168/public_html/wp-content/themes/basel/inc/autoload.php
    /home/cafekg168/public_html/wp-content/themes/basel/inc/woocommerce.php
    /home/cafekg168/public_html/wp-content/themes/basel/404.php
    /home/cafekg168/public_html/wp-content/themes/basel/maintenance.php
    /home/cafekg168/public_html/wp-content/themes/basel/content-none.php
    /home/cafekg168/public_html/wp-content/themes/basel/portfolio.php
    /home/cafekg168/public_html/wp-content/themes/basel/page.php
    /home/cafekg168/public_html/wp-content/themes/basel/comments.php
    /home/cafekg168/public_html/wp-content/themes/basel/single-portfolio.php
    /home/cafekg168/public_html/wp-content/themes/basel/functions.php
    /home/cafekg168/public_html/wp-content/themes/basel/vc_templates/vc_gallery.php
    /home/cafekg168/public_html/wp-content/themes/basel/vc_templates/vc_images_carousel.php
    /home/cafekg168/public_html/wp-content/themes/basel/archive-portfolio.php
    /home/cafekg168/public_html/wp-content/themes/basel/taxonomy-project-cat.php
    /home/cafekg168/public_html/wp-content/themes/basel/sidebar-footer.php
    /home/cafekg168/public_html/wp-content/themes/twentysixteen/single.php
    /home/cafekg168/public_html/wp-content/themes/twentysixteen/sidebar.php
    /home/cafekg168/public_html/wp-content/themes/twentysixteen/searchform.php
    /home/cafekg168/public_html/wp-content/themes/twentysixteen/footer.php
    /home/cafekg168/public_html/wp-content/themes/twentysixteen/sidebar-content-bottom.php
    /home/cafekg168/public_html/wp-content/themes/twentysixteen/index.php
    /home/cafekg168/public_html/wp-content/themes/twentysixteen/archive.php
    /home/cafekg168/public_html/wp-content/themes/twentysixteen/inc/back-compat.php
    /home/cafekg168/public_html/wp-content/themes/twentysixteen/inc/customizer.php
    /home/cafekg168/public_html/wp-content/themes/twentysixteen/404.php
    /home/cafekg168/public_html/wp-content/themes/twentysixteen/page.php
    /home/cafekg168/public_html/wp-content/themes/twentysixteen/template-parts/content-single.php
    /home/cafekg168/public_html/wp-content/themes/twentysixteen/template-parts/content-page.php
    /home/cafekg168/public_html/wp-content/themes/twentysixteen/comments.php
    /home/cafekg168/public_html/wp-content/themes/twentysixteen/image.php
    /home/cafekg168/public_html/wp-content/themes/twentysixteen/functions.php
    /home/cafekg168/public_html/wp-content/themes/twentysixteen/search.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/single.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/sidebar.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/searchform.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/footer.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/index.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/archive.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/inc/back-compat.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/inc/custom-header.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/inc/color-patterns.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/inc/icon-functions.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/inc/customizer.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/inc/template-functions.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/404.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/front-page.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/page.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/comments.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/functions.php
    /home/cafekg168/public_html/wp-content/themes/twentyseventeen/search.php
    /home/cafekg168/public_html/wp-content/themes/twentyfifteen/single.php
    /home/cafekg168/public_html/wp-content/themes/twentyfifteen/sidebar.php
    /home/cafekg168/public_html/wp-content/themes/twentyfifteen/index.php
    /home/cafekg168/public_html/wp-content/themes/twentyfifteen/archive.php
    /home/cafekg168/public_html/wp-content/themes/twentyfifteen/inc/back-compat.php
    /home/cafekg168/public_html/wp-content/themes/twentyfifteen/inc/custom-header.php
    /home/cafekg168/public_html/wp-content/themes/twentyfifteen/inc/template-tags.php
    /home/cafekg168/public_html/wp-content/themes/twentyfifteen/inc/customizer.php
    /home/cafekg168/public_html/wp-content/themes/twentyfifteen/404.php
    /home/cafekg168/public_html/wp-content/themes/twentyfifteen/page.php
    /home/cafekg168/public_html/wp-content/themes/twentyfifteen/comments.php
    /home/cafekg168/public_html/wp-content/themes/twentyfifteen/image.php
    /home/cafekg168/public_html/wp-content/themes/twentyfifteen/functions.php
    /home/cafekg168/public_html/wp-content/themes/twentyfifteen/content-page.php
    /home/cafekg168/public_html/wp-content/themes/twentyfifteen/search.php
    ===============

    To prevent any data corruption and theft of your website data, we have placed a POST block on the account to prevent all POST functions made to the account.

    To access and make the changes to the website, you will need to edit the .htaccess in /home/cafekg168/public_html/ to add your own public IP as follows:

    <Limit POST>
    order deny,allow
    deny from all
    allow from 127.0.0.1
    allow from 103.245.95.0/24
    allow from [add your own public ip]
    </Limit>

    To know what your own public IP is, you can go to https://cpanel.com/showip.shtml

    For E-commerce website, it is important to be malware free so that the POSTBLOCK can be removed. POSTBLOCK set up will restrict more malware injection and prevent malware from taking over your email service to send out spam emails. However, POSTBLOCK also restrict functions like customer/admin login, customer purchase action, and contact form as well.

    We will require you to perform the following on the websites to complete the security with the assistance of your developer:

    1) Change any login passwords for all the websites in this account.
    2) Check the website files to locate other malicious/backdoor files that are undetected by malware scanners.
    3) Ensure the website applications and their respective plugins or extensions are up-to-date to prevent any form of exploit for the hackers. (Do ensure you have made a backup copy of both webfiles and database before proceeding.)
    4) Remove unused plugins or extensions to prevent any neglected plugins and extensions from becoming a loophole for hackers to exploit.
    5) Check your website users to make sure no malicious users have been added to gain admin privilege to login to any website admin panel.
    6) Consider adding security plugins or extensions to better secure your websites.

    If you require our assistance to clean up the infected files in your hosting account, please do not hesitate to contact us for more information.

    – – –

    We look forward to your response. Thank you!

    September 8, 2017 at 11:17 am #19035

    Artem Temos
    Keymaster

    Hi,

    These files were infected on your website and our original files don’t have any virus. Otherwise, ThemeForest would not accept our theme at all. You can just reinstall Basel downloading the latest version of the theme from ThemeForest.

    Regards

  • Author
    Posts

Tagged: , , ,

Viewing 2 posts - 1 through 2 (of 2 total)