Search engine spoofing
-
-
- Gene Page
- Hero Rocketeer
- Posts: 289
- Thanks: 0
-
Houston wrote:
I found this link which had a solution to the problem. However it has return yet none of these files reside on my server. This is not my area of expertise yet it is proving to be quite a pain in my ass.
petetasker.wordpress.com/2012/07/23/joomla-pharma-hack/
So if anybody Has any experience with this problem I would appreciate any additional input.
Many thanks,
Houston
Cleaning your root directory files is only a small part of it...
Check the vulnerable extensions list to see if you have any vulnerable extensions installed.
docs.joomla.org/Vulnerable_Extensions_List
Even if you uninstall the extension that initiated the problem, you'll probably still have corrupted files which grant backdoor access. But uninstalling a compromised extension is a good first step.
The extension I had installed 4 years corrupted files all throughout the website. I had dummy files in numerous directories, and lines of code in files that didn't belong.
If you don't have a lot of custom patch work, I say manually reinstall any extension that could be infected. That will overwrite any bad files.
Seriously though, for the time you'll spend I say you get a quote from specialists. - Show Support for These Requests...
Automatic K2 Tags for RokSprocket ->
www.rockettheme.com/forum/index.php?f=16...86380&rb_v=viewtopic
Option for K2 Video instead of Image for RokSprocket (like JoomlaBamboo's ZenTools) ->...
-
-
-
- Corey Anders
- Hero Rocketeer
- Posts: 318
- Thanks: 0
- You need to install OSE Security Suite. It isn't cheap but it does the job. Every single Joomla site on my server got hacked a few months ago and as soon as I would fix, they would get hacked again...sometimes within minutes. It was a total nightmare and my sites were down for weeks. I installed OSE Security Suite and their support team helped my run it and clean all the malware and viruses off the server. I haven't gotten hacked since.
-
-
-
- Gene Page
- Hero Rocketeer
- Posts: 289
- Thanks: 0
-
Corey Anders wrote:
You need to install OSE Security Suite. It isn't cheap but it does the job. Every single Joomla site on my server got hacked a few months ago and as soon as I would fix, they would get hacked again...sometimes within minutes. It was a total nightmare and my sites were down for weeks. I installed OSE Security Suite and their support team helped my run it and clean all the malware and viruses off the server. I haven't gotten hacked since.
OSE are "Specialists" I referenced above. They know their stuff. I can't remember the guy's name, it's been so long... but he really demonstrated a unique level of knowledge.
Like Corey says, it's not cheap, but it's worth it. - Show Support for These Requests...
Automatic K2 Tags for RokSprocket ->
www.rockettheme.com/forum/index.php?f=16...86380&rb_v=viewtopic
Option for K2 Video instead of Image for RokSprocket (like JoomlaBamboo's ZenTools) ->...
-
-
-
- CMYKreative
- Elite Rocketeer
- Posts: 706
- Thanks: 15
-
Once the site is clean, I think hands down Admin Tools is the best component out there for securing a site and support is great:
www.akeebabackup.com/products/admin-tools.html
It even monitors your .php files to see if anything changes, then alerts you immediately. - CMYKreative : Graphic Design , Web Design , Printing , Banner Ads , Branding and more.
-
-
-
- Gene Page
- Hero Rocketeer
- Posts: 289
- Thanks: 0
-
CMYKreative wrote:
Once the site is clean, I think hands down Admin Tools is the best component out there for securing a site and support is great:
www.akeebabackup.com/products/admin-tools.html
It even monitors your .php files to see if anything changes, then alerts you immediately.
:arrowu:
That's how I keep my sites safe now. That and I never use any extension that hasn't been thoroughly tested. - Show Support for These Requests...
Automatic K2 Tags for RokSprocket ->
www.rockettheme.com/forum/index.php?f=16...86380&rb_v=viewtopic
Option for K2 Video instead of Image for RokSprocket (like JoomlaBamboo's ZenTools) ->...
-
-
-
- Houston
- Elite Rocketeer
- Posts: 1077
- Thanks: 2
-
That's how I keep my sites safe now. That and I never use any extension that hasn't been thoroughly tested.
When you say "thoroughly tested" do you mean by you or the 3rd party you get it from? - Houston Brown -
www.splitlightdesigns.com
Apache Version = 2.2.2 / PHP Version = 5.2.17 or 5.3.15 (dual)
mySQL Version = 5.5.21
Joomla Version = 2.5.8 / Web Servers OS Version = CentOS 6
-
-
-
- CMYKreative
- Elite Rocketeer
- Posts: 706
- Thanks: 15
-
Houston wrote:
That's how I keep my sites safe now. That and I never use any extension that hasn't been thoroughly tested.
When you say "thoroughly tested" do you mean by you or the 3rd party you get it from?
For us it means one from the mainstream developers, or one that has got a number of good reviews by 3rd parties. NEVER use an extension that you didn't buy or don't know where it came from. - CMYKreative : Graphic Design , Web Design , Printing , Banner Ads , Branding and more.
-
-
-
- Gene Page
- Hero Rocketeer
- Posts: 289
- Thanks: 0
-
CMYKreative wrote:
Houston wrote:That's how I keep my sites safe now. That and I never use any extension that hasn't been thoroughly tested.
When you say "thoroughly tested" do you mean by you or the 3rd party you get it from?
For us it means one from the mainstream developers, or one that has got a number of good reviews by 3rd parties. NEVER use an extension that you didn't buy or don't know where it came from.
This forum needs like buttons. ^ That's exactly what I mean.
If an extension has fifty 5 star reviews than I'm not overly concerned... that being said...
it's always a good idea to check against that link...
docs.joomla.org/Vulnerable_Extensions_List - Show Support for These Requests...
Automatic K2 Tags for RokSprocket ->
www.rockettheme.com/forum/index.php?f=16...86380&rb_v=viewtopic
Option for K2 Video instead of Image for RokSprocket (like JoomlaBamboo's ZenTools) ->...
-
Time to create page: 0.060 seconds