Edit File: abuseadmin_config.json
{ "global": true, "suspend_email": false, "remove_cron": false, "suspend_ht": true, "smtp": false, "mail_fn": false, "email_off": true, "suspend_cpanel": false, "htaccess_message": "RewriteEngine On\n\n# --- Optional: allow your own IP ---\n#RewriteCond %{REMOTE_ADDR} ^123\\.123\\.123\\.123$\n#RewriteRule ^ - [L]\n\n# --- Force every other request to return HTTP-503 ---\nRewriteCond %{REQUEST_URI} !^\/robots\\.txt$ [NC]\nRewriteCond %{REQUEST_URI} !^\/favicon\\.ico$ [NC]\nRewriteRule ^ - [R=503,L]\n\n# --- Inline HTML banner for the 503 ---\nErrorDocument 503 \"<!doctype html><html><head><title>Site blocked<\/title><\/head><body style='font-family:Arial,sans-serif;margin:2em'><h2>This website has been identified as vulnerable and insecure.<\/h2><p>Public access has been blocked to protect your data.<\/p><p>Open the <a href='https:\/\/cpanelplugin.com\/cptools' target='_blank' rel='noopener'>cPTools plugin<\/a> in your cPanel to unlock the site and strengthen its security.<\/p><p>We recommend consulting a developer to resolve the vulnerabilities.<\/p><\/body><\/html>\"\n\n# Tell Apache\/LiteSpeed to serve the banner as HTML\nHeader always set Content-Type \"text\/html; charset=UTF-8\" env=REDIRECT_STATUS\n\n# Hint to search engines that downtime is temporary (1 hour)\nHeader always set Retry-After \"3600\" env=REDIRECT_STATUS ", "whmcs_url": "https:\/\/redserverhost.com\/members\/includes\/api.php", "whmcs_subject": "Website is insecure. Vulnerability detected inside %s", "whmcs_message": "Hello,\nImunify has detected malware on your website. We\u2019ve temporarily blocked access via .htaccess to protect the server.\nThe issue appears to stem from insecure PHP code\u2014likely due to poor coding practices by your developer (e.g., lack of input validation or unsafe file handling).\nPlease have your developer clean the code and remove all vulnerabilities. Once done please Login to cPanel and then re-enable the website via AbuseAdmin inside cPtools.\n\ncPanel Username : %s\nInfected Domain : %s\nFilename : %s\n\nRegards", "whmcs_ticket": true }