Nothing so far seems to have any negative on site that I can see at the moment.
Joomla and all extensions are up to date and using PHP7.4
I found a "gif" image that was actually code which was removed.
In the default image directory I keep a .htaccess file to prevent scripts from running from that directory. I also use .htaccess to prevent access to the /administrator directory. I disable it when I need to administer content.
Code: Select all
{HEX}php.inject.miner2a2.484 : /home/yourpriv/public_html/plugins/content/finder/.73865c3c.ico => /usr/local/maldetect/quarantine/.73865c3c.ico.1831021480
{HEX}php.inject.miner2a2.484 : /home/yourpriv/public_html/media/com_fields/js/.432e1bdf.ico => /usr/local/maldetect/quarantine/.432e1bdf.ico.986211269
{HEX}php.inject.miner2a2.484 : /home/yourpriv/public_html/libraries/src/Image/.7065e556.ico => /usr/local/maldetect/quarantine/.7065e556.ico.216614783
{HEX}php.inject.miner2a2.484 : /home/yourpriv/public_html/plugins/extension/jce/.3b88361f.ico => /usr/local/maldetect/quarantine/.3b88361f.ico.2798422822
{HEX}php.inject.miner2a2.484 : /home/yourpriv/public_html/plugins/system/redirect/.9965bd08.ico => /usr/local/maldetect/quarantine/.9965bd08.ico.2055128234
{HEX}php.inject.miner2a2.484 : /home/yourpriv/public_html/components/com_tags/models/.da5bf91c.ico => /usr/local/maldetect/quarantine/.da5bf91c.ico.63442032