I have a DREADFUL problem with some of phpnuke that hosted on my server. Ev1 abuse team send me a mail about " PHP-Nuke Exploit " . they notice me that a spammer use of a phpnuke site to do his work. and send many spam in every month.
now I have 3 question :
1- how can i discover that which account on server use phpnuke ?
( I see in mysql database list that we have about 200 phpnuke on our server)
2- how can I find out that which of account is victim of that spammer ?
3- how can I filter all phpnuke ?( can I do this with mod_security) ?