The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Joomla Compromised Sending Spam

Discussion in 'Security' started by zsana, Aug 27, 2014.

  1. zsana

    zsana Registered

    Joined:
    Aug 27, 2014
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Website Owner
    Greetings
    I got a message from my side is that your site is spam. To solve the problem I have done the following tasks
    1 Disconnect all users have access
    2 I deleted all my emails
    A few days later I received another spam message again. This time I did the following things.
    1 core changed from 1.5 to 2.5
    2 Remove some Shell files
    3 transfering site to a new folder and redirect it
    I have been in the mainstream, the core Joomla 2.5 only template I've moved the old site to site, plus the last site that it has changed direction and contract in the new folder. But again I received a spam message .i dont know What can I do please please help. Thank you
     
  2. server9host

    server9host Well-Known Member

    Joined:
    Sep 18, 2013
    Messages:
    160
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    India
    cPanel Access Level:
    Root Administrator
    Re: request for solve a problem

    Hello,

    Please scan your whole account using maldet or clamscan if you found any infected file then quarantine those files.
    Change the Password for email account from you get spam on server.
    Enable SpamAssassin for your account.
    Update you joomla

    Please use above steps
     
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    653
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Re: request for solve a problem

    Hello :)

    To clarify, are you receiving SPAM, or do you mean your Joomla script is sending out SPAM?

    Thank you.
     
  4. zsana

    zsana Registered

    Joined:
    Aug 27, 2014
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Website Owner
    Re: request for solve a problem

    what i've done is:
    the scanning whole account whit ClamAV find viruse backdoor.php in the folowing way
    www/components/com_search/functions.php
    www/libraries/joomla/filesystem/archive/gallery.php
    and quarantine them
    What should I do to prevent the problem repeating?
    how can i set the ClamAV to check outomaticly always my account?
    Is there any way or website to help me understand my website still sends out spam before provider, close my website?
    thanks a lot
     
  5. server9host

    server9host Well-Known Member

    Joined:
    Sep 18, 2013
    Messages:
    160
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    India
    cPanel Access Level:
    Root Administrator
  6. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,451
    Likes Received:
    195
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Re: request for solve a problem

    You should be looking for solutions on the Joomla community forums. Here's a good place to start:
    /http://forum.joomla.org/viewtopic.php?f=621&t=582854
     
Loading...

Share This Page