Website compromised and directing to spam

Discussion regarding Joomla! 2.5 security issues.

Moderators: mandville, General Support Moderators

Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Forum Post Assistant / FPA - If you are serious about wanting help, you will use this tool to help you post.
Locked
howlingweb
Joomla! Fledgling
Joomla! Fledgling
Posts: 1
Joined: Sat Apr 30, 2016 2:09 am

Website compromised and directing to spam

Post by howlingweb » Sat Apr 30, 2016 2:15 am

Attached is an example of the website on Google

Image
Problem Description :: Forum Post Assistant (v1.2.7) : 30th April 2016 wrote:Website points to spam
Actions Taken To Resolve by Forum Post Assistant (v1.2.7) 30th April 2016 wrote:Working through Joomla Recovery steps
Forum Post Assistant (v1.2.7) : 30th April 2016 wrote:
Basic Environment :: wrote:Joomla! Instance :: Joomla! 3.2.3-Stable (Ember) 6-March-2014
Joomla! Platform :: Joomla Platform 13.1.0-Stable (Curiosity) 24-Apr-2013
Joomla! Configured :: Yes | Read-Only (444) | Owner: footykid (uid: 1/gid: 1) | Group: httpd (gid: 1) | Valid For: 3.2
Configuration Options :: Offline: 1 | SEF: 1 | SEF Suffix: 0 | SEF ReWrite: 0 | .htaccess/web.config: Yes | GZip: 0 | Cache: 0 | FTP Layer: 0 | SSL: 0 | Error Reporting: default | Site Debug: 0 | Language Debug: 0 | Default Access: 1 | Unicode Slugs: 0 | Database Credentials Present: Yes

Host Configuration :: OS: Linux | OS Version: 2.6.32-673.8.1.lve1.4.3.el6.x86_64 | Technology: x86_64 | Web Server: Apache | Encoding: gzip, deflate | Doc Root: /hsphere/local/home/footykid/thekitchengorey.ie | System TMP Writable: Yes

PHP Configuration :: Version: 5.3.29 | PHP API: cgi-fcgi | Session Path Writable: Yes | Display Errors: | Error Reporting: 22519 | Log Errors To: /hsphere/local/var/httpd/logs/php_error.log | Last Known Error: | Register Globals: | Magic Quotes: | Safe Mode: | Open Base: | Uploads: 1 | Max. Upload Size: 50M | Max. POST Size: 50M | Max. Input Time: 60 | Max. Execution Time: 30 | Memory Limit: 128M

MySQL Configuration :: Version: 5.1.73-log (Client:5.1.73) | Host: --protected-- (--protected--) | Collation: latin1_swedish_ci (Character Set: latin1) | Database Size: 5.90 MiB | #of Tables:  100
Detailed Environment :: wrote:PHP Extensions :: Core (5.3.29) | date (5.3.29) | ereg () | libxml () | openssl () | pcre () | sqlite3 (0.7-dev) | zlib (1.1) | bz2 () | ctype () | dba () | dom (20031129) | fileinfo (1.0.5-dev) | filter (0.11.0) | ftp () | gd () | gettext () | hash (1.0) | iconv () | json (1.2.1) | mbstring () | mcrypt () | SPL (0.2) | PDO (1.0.4dev) | pdo_sqlite (1.0.1) | posix () | Reflection ($Id: 4af6c4c676864b1c0bfa693845af0688645c37cf $) | session () | SimpleXML (0.1) | sockets () | SQLite (2.0-dev) | standard (5.3.29) | tokenizer (0.1) | xml () | xmlreader (0.1) | xmlwriter (0.1) | xsl (0.1) | cgi-fcgi () | bcmath () | calendar () | curl () | gmp () | htscanner (1.0.1) | imap () | ldap () | memcache (2.2.7) | mnogosearch () | mysql (1.0) | mysqli (0.1) | pdo_mysql (1.0.2) | pdo_pgsql (1.0.2) | pgsql () | shmop () | soap () | xmlrpc (0.51) | zip (1.11.0) | mhash () | ionCube Loader () | Zend Guard Loader () | Zend Engine (2.3.0) |
Potential Missing Extensions :: suhosin |

Switch User Environment (Experimental) :: PHP CGI: Yes | Server SU: Yes | PHP SU: Yes | Custom SU (LiteSpeed/Cloud/Grid): Yes
Potential Ownership Issues: No
Folder Permissions :: wrote:Core Folders :: images/ (755) | components/ (755) | modules/ (755) | plugins/ (755) | language/ (755) | templates/ (755) | cache/ (755) | logs/ (755) | tmp/ (755) | administrator/components/ (755) | administrator/modules/ (755) | administrator/language/ (755) | administrator/templates/ (755) |

Elevated Permissions (First 10) ::
Extensions Discovered :: wrote:Components :: SITE :: com_wrapper (3.0.0) | com_mailto (3.0.0) |
Components :: ADMIN :: com_categories (3.0.0) | com_cache (3.0.0) | com_checkin (3.0.0) | com_ajax (3.2.0) | com_installer (3.0.0) | com_search (3.0.0) | com_plugins (3.0.0) | com_finder (3.0.0) | com_messages (3.0.0) | RSForm! (1.4.0 R46) | Widgetkit (1.4.7) | com_users (3.0.0) | com_cpanel (3.0.0) | com_zoo (3.1.3) | com_modules (3.0.0) | com_banners (3.0.0) | com_media (3.0.0) | com_joomlaupdate (3.0.0) | com_tags (3.1.0) | com_redirect (3.0.0) | com_postinstall (3.2.0) | com_login (3.0.0) | JoomlaCK Pugin Manager Control (1.0.0 DEVELOP) | com_jckman (6.3) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | JTreeLink (1.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | com_admin (3.0.0) | com_config (3.0.0) | com_content (3.0.0) | com_menus (3.0.0) | com_languages (3.0.0) | com_templates (3.0.0) | com_newsfeeds (3.0.0) | com_contenthistory (3.2.0) | com_weblinks (3.0.0) |

Modules :: SITE :: ZOO Category (3.0.0) | mod_finder (3.0.0) | mod_wrapper (3.0.0) | mod_footer (3.0.0) | mod_custom (3.0.0) | RSForm! Pro Module (1.4.0) | mod_tags_similar (3.1.0) | mod_stats (3.0.0) | Widgetkit (1.0.0) | mod_articles_categories (3.0.0) | ZOO Tag (3.0.0) | ZOO Item (3.0.1) | mod_breadcrumbs (3.0.0) | mod_whosonline (3.0.0) | mod_syndicate (3.0.0) | mod_languages (3.0.0) | mod_login (3.0.0) | mod_feed (3.0.0) | mod_users_latest (3.0.0) | mod_articles_news (3.0.0) | allChimpRegister (2.0) | mod_related_items (3.0.0) | mod_articles_popular (3.0.0) | mod_tags_popular (3.1.0) | ZOO Comment (3.0.0) | mod_articles_archive (3.0.0) | mod_search (3.0.0) | Widgetkit Twitter (1.0.0) | mod_articles_category (3.0.0) | mod_menu (3.0.0) | mod_weblinks (3.0.0) | mod_banners (3.0.0) | mod_articles_latest (3.0.0) | mod_random_image (3.0.0) |
Modules :: ADMIN :: mod_logged (3.0.0) | mod_custom (3.0.0) | mod_quickicon (3.0.0) | mod_version (3.0.0) | mod_login (3.0.0) | mod_feed (3.0.0) | JoomlaCK Pugin Manager Control (1.0.0 DEVELOP) | mod_popular (3.0.0) | mod_status (3.0.0) | ZOO Quick Icons (3.0.0) | mod_title (3.0.0) | mod_submenu (3.0.0) | mod_toolbar (3.0.0) | mod_menu (3.0.0) | mod_multilangstatus (3.0.0) | mod_latest (3.0.0) | mod_stats_admin (3.0.0) |

Plugins :: SITE :: plg_installer_webinstaller (1.0.5) | plg_authentication_cookie (3.0.0) | plg_authentication_joomla (3.0.0) | plg_authentication_gmail (3.0.0) | plg_authentication_ldap (3.0.0) | plg_extension_joomla (3.0.0) | plg_finder_tags (3.0.0) | plg_finder_categories (3.0.0) | plg_finder_weblinks (3.0.0) | Smart Search - ZOO (2.5.0) | plg_finder_newsfeeds (3.0.0) | plg_finder_contacts (3.0.0) | plg_finder_content (3.0.0) | plg_twofactorauth_yubikey (3.2.0) | plg_twofactorauth_totp (3.2.0) | plg_search_categories (3.0.0) | plg_search_weblinks (3.0.0) | plg_search_newsfeeds (3.0.0) | plg_search_contacts (3.0.0) | Search - ZOO (3.0.0) | plg_search_content (3.0.0) | System - ZOO Event (3.0.0) | System - Widgetkit ZOO (3.1.0) | System - RSForm! Pro MailChimp (1.4.0) | plg_system_highlight (3.0.0) | System - JCK Modal (1.1) | plg_system_cache (3.0.0) | plg_system_languagefilter (3.0.0) | System - Widgetkit (1.0.0) | plg_system_logout (3.0.0) | plg_system_remember (3.0.0) | System - Widgetkit Joomla (1.0.0) | plg_system_sef (3.0.0) | plg_system_debug (3.0.0) | plg_system_log (3.0.0) | plg_system_redirect (3.0.0) | plg_system_p3p (3.0.0) | System - JCK Typography (3.5.0) | plg_system_languagecode (3.0.0) | plg_captcha_recaptcha (3.0.0) | plg_user_contactcreator (3.0.0) | Chimp Your Joomla! (2.0.0) | plg_user_joomla (3.0.0) | plg_user_profile (3.0.0) | plg_editors-xtd_image (3.0.0) | plg_editors-xtd_readmore (3.0.0) | plg_editors-xtd_pagebreak (3.0.0) | plg_editors-xtd_article (3.0.0) | plg_editors_tinymce (4.0.18) | System - JCK Typography (3.5.0) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (0.1) | Unknown (1.0) | Unknown (0.1) | Editor - JoomlaCK (6.5.2) | plg_editors_codemirror (3.15) | plg_quickicon_joomlaupdate (3.0.0) | plg_quickicon_extensionupdate (3.0.0) | plg_content_vote (3.0.0) | plg_content_loadmodule (3.0.0) | plg_content_joomla (3.0.0) | plg_content_emailcloak (3.0.0) | plg_content_finder (3.0.0) | Content - Widgetkit (1.0.0) | plg_content_pagenavigation (3.0.0) | Content - ZOO Shortcode (3.0.0) | plg_content_pagebreak (3.0.0) |
Templates Discovered :: wrote:Templates :: SITE :: beez3 (3.1.0) | protostar (1.0) | yoo_moustache (1.0.1) |
Templates :: ADMIN :: isis (1.0) | hathor (3.0.0) |
You do not have the required permissions to view the files attached to this post.
Top
Locked

Return to “Security in Joomla! 2.5”