Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Joomla Compromised Sending Spam

Discussion in 'Security' started by zsana, Aug 27, 2014.

  1. zsana

    zsana Registered

    Joined:
    Aug 27, 2014
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Website Owner
    Greetings
    I got a message from my side is that your site is spam. To solve the problem I have done the following tasks
    1 Disconnect all users have access
    2 I deleted all my emails
    A few days later I received another spam message again. This time I did the following things.
    1 core changed from 1.5 to 2.5
    2 Remove some Shell files
    3 transfering site to a new folder and redirect it
    I have been in the mainstream, the core Joomla 2.5 only template I've moved the old site to site, plus the last site that it has changed direction and contract in the new folder. But again I received a spam message .i dont know What can I do please please help. Thank you
     
  2. server9host

    server9host Well-Known Member

    Joined:
    Sep 18, 2013
    Messages:
    160
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    India
    cPanel Access Level:
    Root Administrator
    Re: request for solve a problem

    Hello,

    Please scan your whole account using maldet or clamscan if you found any infected file then quarantine those files.
    Change the Password for email account from you get spam on server.
    Enable SpamAssassin for your account.
    Update you joomla

    Please use above steps
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    44,323
    Likes Received:
    1,851
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Re: request for solve a problem

    Hello :)

    To clarify, are you receiving SPAM, or do you mean your Joomla script is sending out SPAM?

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  4. zsana

    zsana Registered

    Joined:
    Aug 27, 2014
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Website Owner
    Re: request for solve a problem

    what i've done is:
    the scanning whole account whit ClamAV find viruse backdoor.php in the folowing way
    www/components/com_search/functions.php
    www/libraries/joomla/filesystem/archive/gallery.php
    and quarantine them
    What should I do to prevent the problem repeating?
    how can i set the ClamAV to check outomaticly always my account?
    Is there any way or website to help me understand my website still sends out spam before provider, close my website?
    thanks a lot
     
  5. server9host

    server9host Well-Known Member

    Joined:
    Sep 18, 2013
    Messages:
    160
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    India
    cPanel Access Level:
    Root Administrator
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  6. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    16,309
    Likes Received:
    393
    Trophy Points:
    583
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Re: request for solve a problem

    You should be looking for solutions on the Joomla community forums. Here's a good place to start:
    /http://forum.joomla.org/viewtopic.php?f=621&t=582854
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice