Blackhole Exploit Kit

[bhensley21]

I performed a clean installation of Joomla 2.5.x and then a clean installation of VirtueMart 2.0.8c. After configuring the default language, my antivirus software started telling me that the site contains the Blackhole Exploit Kit (type 2187). I use AVG Free and I get the warning message at the root of the web site. I haven't configured anything in Joomla beyond the default new installation. My hosting provider is JustHost.

I can't find anything in the forum about this exploit being in VirtueMart.  Any ideas?

Thanks.

[jenkinhill]

You don't say which Joomla 2.5 version, but all before J2.5.6 are susceptible to various forms of exploit.  There are no reports associating blackhole this with VirtueMart code.

Freelancer and other job quotation sites have received a lot of 2187 removal requests for many types of forum, blog and cms software, some wanting whole servers cleaned - and some claiming it is a false AVG report.

There is a Joomla report here which is worth looking at: http://forum.joomla.org/viewtopic.php?f=621&t=725774

Some reports here http://forum.joomla.org/viewtopic.php?f=432&t=729055  and here: http://forum.joomla.org/viewtopic.php?f=621&t=727457

And this thread concerns your host:  http://www.webhostingtalk.com/archive/index.php/t-1155563.html

To finish off:  http://webhosting.about.com/od/Latest-Hosting-Trends/a/What-Should-Really-Be-Classified-A-Secure-Web-Hosting-Service.htm