Support

May 16, 2018 at 12:05 pm

Dreamhost- sent the following and wanted met delete plugin and re-install

My question is if I delete the EE plugin entirely will i need to put in all the license info and setting again?? or is that info stored in database

is there an automated update this site license??

any other solution you can suggest?

We have recently scanned one or more users on your DreamHost account for
potential security threats. Unfortunately, we found some potential
indications that your website(s) *may* be compromised.

We understand that this may not be the best news you can get. This
notification is intended to help you through the process and serve as a
starting point to assist you in getting your account cleaned and secured.
While we won’t be able to complete these processes for you, if you have
any questions about the items that follow please don’t hesitate to reply
to this email and we will be happy to clarify any points or offer any
further guidance to help you through getting your account back to normal.

We have identified malicious content on your account, added by an outside
entity, which may include malware such as backdoor shells, adware, botnet,
and spammer scripts.

The following file(s) specifically have been identified as attacker-added
malware. We have DISABLED these files by setting their permissions to 200
(Owner write-only). You will need to audit these files and either replace
them with known good versions or remove them altogether:

/home/wp_5w5mz6/clairescreativeadventures.com/wp-content/plugins/event-espresso- core-reg/core/libraries/rest_api/assets/js/eejs-api.min.js

The existence of this known attacker content indicates that your website
or user password has been compromised. You or a trusted webmaster will
need to determine the attack vector and then take actions to mitigate
further exploits: