site hacked

Discussion regarding Joomla! 1.5 security issues.
Joomla! Vulnerable Extensions: http://feeds.joomla.org/JoomlaSecurityV ... Extensions

Moderator: General Support Moderators

Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Security Checklist
Forum Post Assistant - If you are serious about wanting help, you will use this tool to help you post.
User avatar
4joomla
Joomla! Apprentice
Joomla! Apprentice
Posts: 46
Joined: Tue Jun 02, 2009 2:44 pm

site hacked

Postby 4joomla » Tue Dec 27, 2011 2:03 pm

Respected members .
My site is hacked . :'(
http://www.kuhipat .org
I dont have any clue how to recover it from this problem. I can log in to admin and all my files are intact .
Please guide me how to get rid of this .
thanking you .
4ঝুম্‌লা

User avatar
pe7er
Joomla! Master
Joomla! Master
Posts: 21272
Joined: Thu Aug 18, 2005 8:55 pm
Location: Nijmegen, The Netherlands
Contact:

Re: site hacked

Postby pe7er » Tue Dec 27, 2011 2:06 pm

Kind Regards,
Peter Martin, Global Moderator
http://www.db8.nl - Joomla specialist, Nijmegen, Nederland
Latest website: https://pronounce.eu/

User avatar
4joomla
Joomla! Apprentice
Joomla! Apprentice
Posts: 46
Joined: Tue Jun 02, 2009 2:44 pm

Re: site hacked

Postby 4joomla » Tue Dec 27, 2011 2:14 pm

thankyou sir .
I will try to follow it .
regards
4ঝুম্‌লা

User avatar
mandville
Joomla! Master
Joomla! Master
Posts: 13649
Joined: Mon Mar 20, 2006 1:56 am
Location: The Girly Side of Joomla in Sussex

Re: site hacked

Postby mandville » Tue Dec 27, 2011 2:20 pm

[ ] Run the Forum Post Assistant / FPA Instructions available here and are also included in the download package.

[ ] Ensure you have the latest version of Joomla. Delete all files in your Joomla installation. Replace the deleted files with fresh copies of a current full version of Joomla, and fresh copies of extensions and templates used. Only by replacing all files in the installation (including extensions and templates) can you be sure to remove the backdoors inserted and hidden in files and directories

[ ] Review Vulnerable Extensions List

[ ] Review and action Security Checklist checklist 7 to make sure you've gone through all of the steps.

[ ] Scan all machines with FTP, Joomla super admin, and Joomla admin access for malware, virus, trojans, spyware, etc.

[ ] Change all passwords and if possible user names for the website host control panel and your Joomla site.

[ ] Use proper permissions on files and directories. They should never be 777, but ideal is 644 and 755

[ ] Check your htaccess for for any odd code (i.e. code which is not in the standard htaccess supplied as part of the Joomla installation).

[ ] Check the crontab or Task Scheduler for unexpected jobs/tasks.

[ ] Ensure you do not have anonymous ftp enabled
HU2HY- Poor questions = Poor answer
Un requested Help PM's will be added to the foe list and possibly just deleted
{Community.Connect Administrator }{ Showcase & Security forums Moderator}

evuln-com
Joomla! Fledgling
Joomla! Fledgling
Posts: 4
Joined: Sun Jan 01, 2012 11:49 pm
Contact:

Re: site hacked

Postby evuln-com » Mon Jan 02, 2012 12:00 am

and dont forget to inspect files for web-shells
Regards

kasser
Joomla! Fledgling
Joomla! Fledgling
Posts: 1
Joined: Mon Jan 02, 2012 3:42 am
Contact:

Re: site hacked

Postby kasser » Mon Jan 02, 2012 7:40 pm

1- To get back all your files and everything you need to talk or communicate with server owner, because he can do backup and bring you site online.
2- You need to get help from website support to close all gaps and leaks in your site to keep your site well protected - you need to pay some dollars - not too much - to do that.

User avatar
leolam
Joomla! Master
Joomla! Master
Posts: 16150
Joined: Mon Aug 29, 2005 10:17 am
Location: Netherlands/ UK/ S'pore/Jakarta/ North America
Contact:

Re: site hacked

Postby leolam » Tue Jan 03, 2012 5:58 am

kasser wrote:1- To get back all your files and everything you need to talk or communicate with server owner, because he can do backup and bring you site online.
and what if the backup is also hacked already?
2- You need to get help from website support to close all gaps and leaks in your site to keep your site well protected - you need to pay some dollars - not too much - to do that.
Both replies have no actual value. Madville's reply covers all

Leo 8)
-- Joomla Professional Support Services : https://gws-desk.com --
-- Joomla Specialized Hosting Solutions: https://gws-host.com --
-- Joomla Professional Web Development & Design :www.gws-studio.com
-- Member Joomla Bug Squad --

pranav034
Joomla! Apprentice
Joomla! Apprentice
Posts: 23
Joined: Fri Aug 19, 2011 10:49 am

Re: site hacked

Postby pranav034 » Thu Jan 05, 2012 6:24 am

post removed
Last edited by pranav034 on Thu Jan 05, 2012 6:55 am, edited 1 time in total.

User avatar
leolam
Joomla! Master
Joomla! Master
Posts: 16150
Joined: Mon Aug 29, 2005 10:17 am
Location: Netherlands/ UK/ S'pore/Jakarta/ North America
Contact:

Re: site hacked

Postby leolam » Thu Jan 05, 2012 6:43 am

pranav034 wrote:I am also having some problem opening my site
Do not hijack someone's post and open your own issue so we can help you better?

Leo 8)
-- Joomla Professional Support Services : https://gws-desk.com --
-- Joomla Specialized Hosting Solutions: https://gws-host.com --
-- Joomla Professional Web Development & Design :www.gws-studio.com
-- Member Joomla Bug Squad --

pranav034
Joomla! Apprentice
Joomla! Apprentice
Posts: 23
Joined: Fri Aug 19, 2011 10:49 am

Re: site hacked

Postby pranav034 » Thu Jan 05, 2012 6:54 am

leolam , I am sorry for that . I will post a new topic


Thanks

User avatar
leolam
Joomla! Master
Joomla! Master
Posts: 16150
Joined: Mon Aug 29, 2005 10:17 am
Location: Netherlands/ UK/ S'pore/Jakarta/ North America
Contact:

Re: site hacked

Postby leolam » Thu Jan 05, 2012 8:00 am

posted on your new thread
-- Joomla Professional Support Services : https://gws-desk.com --
-- Joomla Specialized Hosting Solutions: https://gws-host.com --
-- Joomla Professional Web Development & Design :www.gws-studio.com
-- Member Joomla Bug Squad --


Return to “Security in Joomla! 1.5”

Who is online

Users browsing this forum: No registered users and 5 guests