Problems with hacking

Discussion regarding Joomla! 1.5 security issues.
Joomla! Vulnerable Extensions: ... Extensions

Moderator: General Support Moderators

Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Security Checklist
Forum Post Assistant - If you are serious about wanting help, you will use this tool to help you post.
Joomla! Apprentice
Joomla! Apprentice
Posts: 13
Joined: Sun Oct 17, 2010 3:26 pm

Problems with hacking

Postby scytalemk » Wed Mar 14, 2012 11:26 pm

For a second day in a two times hackers are hacking my site. It was joomla 1.5.15, i upgrade it to 1.5.25 but still the same. Server administrators of my hosting service telling me that maybe problem is an index.php of my template, but no other help from them. Can anyone check code of the template and telling me what's wrong?

Here is the code:
You do not have the required permissions to view the files attached to this post.

User avatar
Joomla! Master
Joomla! Master
Posts: 14289
Joined: Mon Mar 20, 2006 1:56 am
Location: The Girly Side of Joomla in Sussex

Re: Problems with hacking

Postby mandville » Thu Mar 15, 2012 12:01 am

go through checklist 7 safe route to recovery
you hack may be shown in the generated code, a url or screenshot would help

[ ] Run the Forum Post Assistant / FPA Instructions available here and are also included in the download package.

[ ] Ensure you have the latest version of Joomla. Delete all files in your Joomla installation. Replace the deleted files with fresh copies of a current full version of Joomla, and fresh copies of extensions and templates used. Only by replacing all files in the installation (including extensions and templates) can you be sure to remove the backdoors inserted and hidden in files and directories

[ ] Review Vulnerable Extensions List

[ ] Review and action Security Checklist checklist 7 to make sure you've gone through all of the steps.

[ ] Scan all machines with FTP, Joomla super admin, and Joomla admin access for malware, virus, trojans, spyware, etc.

[ ] Change all passwords and if possible user names for the website host control panel and your Joomla site.

[ ] Use proper permissions on files and directories. They should never be 777, but ideal is 644 and 755

[ ] Check your htaccess for for any odd code (i.e. code which is not in the standard htaccess supplied as part of the Joomla installation).

[ ] Check the crontab or Task Scheduler for unexpected jobs/tasks.
HU2HY- Poor questions = Poor answer
Un requested Help PM's will be reported, added to the foe list and possibly just deleted
{VEL Team Leader}{TM Auditor }{ Showcase & Security forums Moderator}

Return to “Security in Joomla! 1.5”

Who is online

Users browsing this forum: No registered users and 21 guests