WordPress.org

Support

Support » Plugins and Hacks » Jetpack by WordPress.com » [Resolved] Malicious code?

[Resolved] Malicious code?

  • My website was temporarily shut down by my hosting provider, and I got a message I’ve included below. Obviously Jetpack is a reputable plugin, but does anyone know why they would have done this? I’m fairly certain I was using the most recent version. Is my hosting provider just incompetent?

    Thanks for any information!

    Your account is hosting the following malicious files/scripts :

    /wp-content/plugins/jetpack/languages/jetpack-it_IT.po
    /wp-content/plugins/jetpack/languages/jetpack-it_IT.mo
    /wp-content/plugins/jetpack/modules/carousel/jetpack-carousel.php
    /wp-content/plugins/jetpack/modules/widgets/twitter.php
    /wp-content/plugins/jetpack/modules/widgets/facebook-likebox.php
    /wp-content/plugins/jetpack/modules/widgets/rsslinks-widget.php
    /wp-content/plugins/jetpack/modules/widgets/image-widget.php
    /wp-content/plugins/jetpack/modules/comments/admin.php
    /wp-content/plugins/jetpack/modules/stats.php
    /wp-content/plugins/jetpack/modules/custom-css/csstidy/class.csstidy_optimise.php
    /wp-content/plugins/jetpack/modules/custom-css/csstidy/lang.inc.php
    /wp-content/plugins/jetpack/modules/custom-css/csstidy/css_optimiser.php
    /wp-content/plugins/jetpack/modules/subscriptions.php
    /wp-content/plugins/jetpack/modules/contact-form/readme.txt
    /wp-content/plugins/jetpack/modules/contact-form/grunion-form-view.php
    /wp-content/plugins/jetpack/modules/contact-form/grunion-contact-form.php
    /wp-content/plugins/jetpack/modules/shortcodes/videopress.php
    /wp-content/plugins/jetpack/modules/shortcodes/archives.php
    /wp-content/plugins/jetpack/jetpack.php

    This files are being abused by crackers/hackers to install malicious scripts on your account. Please note that our servers are up to date and monitored frequently against these hack/malicious attempts.
    We have disabled the public_html folder for this account(s) temporarily to avoid any further exploits. This has been done for your own safety as well as to protect everyone else on the server and internet to make it a safe place for all.

Viewing 1 replies (of 1 total)
  • Update: My web host is saying the same thing about other popular plugins and they’ve taken my site offline again. Clearly this isn’t an issue with Jetpack!

Viewing 1 replies (of 1 total)
  • The topic ‘[Resolved] Malicious code?’ is closed to new replies.
Skip to toolbar