Since a few days, my host stop the function mail of my website because it sends thousends spam. Effetivly, the website was hacked, I found a lot of bad files, unknow users, unknow admin ... I delete the bad files, the users, I changed the password and the login of the backend of the site, I changed the password of the database and the ftp ... But always the website sends spam ... And I always find into the directory "log" a php file from foxcontact with blocked mails because using bad words...
Now i need help because I've a lot of white hairs !!!
Please, can you help me ?
Thanks a lot !!
Problem Description :: Forum Post Assistant (v1.2.4) : 29th September 2014 wrote:My website send spam
Actions Taken To Resolve by Forum Post Assistant (v1.2.4) 29th September 2014 wrote:captcha, antispam
Forum Post Assistant (v1.2.4) : 29th September 2014 wrote:Basic Environment :: wrote:Joomla! Instance :: Joomla! 2.5.24-Stable (Ember) 25-July-2014
Joomla! Platform :: Joomla Platform 11.4.0-Stable (Brian Kernighan) 03-Jan-2012
Joomla! Configured :: Yes | Read-Only (444) | Owner: 3881 (uid: /gid: ) | Group: 100 (gid: ) | Valid For: 2.5
Configuration Options :: Offline: 0 | SEF: 1 | SEF Suffix: 1 | SEF ReWrite: 1 | .htaccess/web.config: Yes | GZip: 0 | Cache: 0 | FTP Layer: 0 | SSL: 0 | Error Reporting: none | Site Debug: 0 | Language Debug: 0 | Default Access: 1 | Unicode Slugs: 0 | Database Credentials Present: Yes
Host Configuration :: OS: Linux | OS Version: 3.2.45+nuxit-squeeze-grsec | Technology: x86_64 | Web Server: Apache | Encoding: gzip,deflate | Doc Root: /web/facadiercavanie/cds-informatik | System TMP Writable: Yes
PHP Configuration :: Version: 5.3.27 | PHP API: cgi-fcgi | Session Path Writable: Yes | Display Errors: 1 | Error Reporting: 30711 | Log Errors To: | Last Known Error: | Register Globals: 1 | Magic Quotes: 1 | Safe Mode: | Open Base: | Uploads: 1 | Max. Upload Size: 16M | Max. POST Size: 32M | Max. Input Time: 60 | Max. Execution Time: 120 | Memory Limit: 128M
MySQL Configuration :: Version: 5.5.31-MariaDB-1~wheezy (Client:5.1.73) | Host: --protected-- (--protected--) | Collation: utf8_general_ci (Character Set: utf8) | Database Size: 12.65 MiB | #of Tables: 88Detailed Environment :: wrote:PHP Extensions :: Core (5.3.27) | date (5.3.27) | ereg () | libxml () | openssl () | pcre () | zlib (1.1) | bcmath () | calendar () | ctype () | curl () | dom (20031129) | hash (1.0) | fileinfo (1.0.5-dev) | filter (0.11.0) | ftp () | gd () | gettext () | SPL (0.2) | iconv () | intl (1.1.0) | json (1.2.1) | mbstring () | mcrypt () | mysql (1.0) | mysqli (0.1) | PDO (1.0.4dev) | pdo_mysql (1.0.2) | session () | Reflection ($Id: 4af6c4c676864b1c0bfa693845af0688645c37cf $) | standard (5.3.27) | SimpleXML (0.1) | soap () | Phar (2.0.1) | exif (1.4 $Id$) | tidy (2.0) | tokenizer (0.1) | xml () | xmlreader (0.1) | xmlwriter (0.1) | xsl (0.1) | zip (1.11.0) | cgi-fcgi () | Zend Engine (2.3.0) |
Potential Missing Extensions :: suhosin |
Switch User Environment (Experimental) :: PHP CGI: Yes | Server SU: Yes | PHP SU: Yes | Custom SU (LiteSpeed/Cloud/Grid): No
Potential Ownership Issues: MaybeFolder Permissions :: wrote:Core Folders :: --protected-- (755) | --protected-- (755) | --protected-- (755) | --protected-- (755) | --protected-- (755) | --protected-- (755) | --protected-- (755) | --protected-- (755) | --protected-- (755) | --protected-- (755) | --protected-- (755) | --protected-- (755) | --protected-- (755) |
Elevated Permissions (First 10) ::Extensions Discovered :: wrote:Strict Information Privacy was selected. Nothing to display.Templates Discovered :: wrote:_FPA_STRICT Information Privacy Nothing to display.