I have an existing client using Joomla 1.5.6 on a unix server using SUPHP. Problem we are facing is the site is continually having malicious scripts uploaded and executed. Some of the script send out tens of thousands of emails. Everytime we se ethe issue, we block the given IP and then remove the script. But this is just temporary as it continually comnes. We have tried changing the ftp passwords, Joomla passwords, but the individual still manages to inject malicious scripts. Just the other day they deleted the [url removed, login to view] from the template folder which caused the sites layout to break.
One shell application they have uploaded is C99madShell v. 2.0 madnet edition! which we have since removed (templates/sitename/[url removed, login to view]).
I have attached a log of the hackers attempt on our system you can see various entrie sin the log file. Teh actual malicious script can be found in the paths below:
shopping/cgi-bin/[url removed, login to view]
templates/sitename/[url removed, login to view]
For security reasons, in the attached log file, I have replaced the actual sitename and template name with the name ``sitename`
So essentially I want someone who can secure this installation of Joomla (through upgrading, .htaccess files, permissions, etc..) so the site will no longer get hacked.
I think the log file will likely be helpfull in identifying issues.
26 freelancers are bidding on average $127 for this job
Dear Sir, We are a team of joomla developers and are ready to start with [url removed, login to view] check PM for more details. Regards, Samir