Received a email from Lunar saying this
Hello, During a recent security scan on your server, we found the following script on your account: User: makin21 System: oceanus Viewscan found the following security issues: Script: /home/makin21/public_html/notes.php Reason: r57 shell viewer Script is disabled and renamed to Script: /home/makin21/public_html/notes.php_contact.support Please update all scripts and plugins and remove the files which you haven't uploaded, within 24 hours. Please also update all your passwords. Please don't ignore this mail else we have to suspend your account as per company policy.

then I contacted them letting them know I do not install or know how to install or fix anything in the backside and the person that did my site is out of country at time.
They then told me this
Hello, Based on the message that you received, it would indicate that the file listed may have a "shell viewer" written into it. You will need to review the file, and see if it has script in it you did not put in, or if the file is not needed for your script, remove the file. It would also be recommended to insure that you are running the most recent version of your script, as running outdated scripts can lead to being compromised by 3rd parties. We are limited in the scripting, coding and support for third party applications that we can provide through the help desk, as the help desk is primarily for account and server issues. You may want to consult our community forums at http://lunarforums.com . There are many customers and lunarpages employees who frequent these forums answering questions and asking thier own. You would also have a wider audience to assist in answering your questions in the forums then you would through the help desk. Alternatively you may want to contact the provider of your script. Best regards, Troy Laclaire support@lunarpages.com

so can someone let me know what I can do to fix this>and do they mean every member should change their password or does it mean someone tried to hack my site> I am unclear

Mitch, Lunar has contacted me and let me know this
Hello, Based on the message that you received, it would indicate that the file listed may have a "shell viewer" written into it. You will need to review the file, and see if it has script in it you did not put in, or if the file is not needed for your script, remove the file. It would also be recommended to insure that you are running the most recent version of your script, as running outdated scripts can lead to being compromised by 3rd parties
Viewscan found the following security issues:

Script: /home/makin21/public_html/notes.php
Reason: r57 shell viewer
Script is disabled and renamed to Script: /home/makin21/public_html/notes.php_contact.support

Please update all scripts and plugins and remove the files which you haven't uploaded, within 24 hours. Please also update all your passwords.

But, problem I have is I know nothing about how to fix this as I dont write any Scripts. The person that does all my backside work is out of country and I cannot contact him. I dont know what else to do

I would love to remove the things but I dont even know where to find them. I will have to hire someone. Not sure where I post to hire them

that is the problem, I dont know anything about installing or anything to do with mods?
I am waiting for Lunar pages to contact me back but its been a week.

My problem is I dont know even how to find that script or what its for.
Can you give me a walk through? I have added and removed things from the Overall Header before so am familiar with backside. I am the only Admin and have no moderators

whew now that was simple and I followed it and sure enough Lunar Support was on phone as I did it lol
So he was pleased that you were kind enough to help me out. Thank you so much