I have an existing client using Joomla 1.5.6 on a unix server using SUPHP. Problem we are facing is the site is continually having malicious scripts uploaded and executed. Some of the script send out tens of thousands of emails. Everytime we se ethe issue, we block the given IP and then remove the script. But this is just temporary as it continually comnes. We have tried changing the ftp passwords, Joomla passwords, but the individual still manages to inject malicious scripts. Just the other day they deleted the [url removed, login to view] from the template folder which caused the sites layout to break.
One shell application they have uploaded is C99madShell v. 2.0 madnet edition! which we have since removed (templates/sitename/[url removed, login to view]).
I have attached a log of the hackers attempt on our system you can see various entrie sin the log file. Teh actual malicious script can be found in the paths below:
shopping/cgi-bin/[url removed, login to view]
templates/sitename/[url removed, login to view]
For security reasons, in the attached log file, I have replaced the actual sitename and template name with the name ``sitename`
So essentially I want someone who can secure this installation of Joomla (through upgrading, .htaccess files, permissions, etc..) so the site will no longer get hacked.
I think the log file will likely be helpfull in identifying issues.
26 freelancer bu iş için ortalamada 127$ teklif veriyor
You need an upgrade to [url removed, login to view] and tightening down of server permissions. 3rd party add-ons need to be reviewed. Your data is most likely safe and can be inmported into a new install. I strongly suggest a clean upgrade Daha fazlası
Dear Sir, We are a team of joomla developers and are ready to start with [url removed, login to view] check PM for more details. Regards, Samir