Malicious PHP Code - NEED HELP! - Joomla! Forum - community, help and support
hi... not new joomla! have done 10 different sites on years. know isn't bunch more lot. experiencing problem can't figure out , has frustrated heck out of me.
the basics... have 4gh hosting account on godaddy. have main domain (destinationself.com) , additional sites in folders (as supposed do).
when started hosting in nov. 2011 used godaddy's 1 click joomla setup (j1.5 -only option) couple of initial sites. curious how worked , thought heck. somewhere along line started new website , installed joomla 2.5 site because wanted using 2.5.
at point year, upgraded initial sites 2.5 well. ftp'd files rather using godaddy. june (latest).
from until october fine. in october (as far able tell) started getting malicious php code hitting files. eval() code , can't seem stop it. every friday happens. driving me crazy. don't know coming from, why happening, nor how stop it.
i bought rsfirewall, thinking block attacks , still happens. changed of passwords. still happens.
i called godaddy , asked them , told me in destinationself.com site allowing access someone. pretty have rockettheme products on site. have jce , facebook intergrated photo album product. can't think of name.
my plan assume godaddy correct site , remove extensions , wait see if happens again.
can offer assistance? thanks!
billy
the basics... have 4gh hosting account on godaddy. have main domain (destinationself.com) , additional sites in folders (as supposed do).
when started hosting in nov. 2011 used godaddy's 1 click joomla setup (j1.5 -only option) couple of initial sites. curious how worked , thought heck. somewhere along line started new website , installed joomla 2.5 site because wanted using 2.5.
at point year, upgraded initial sites 2.5 well. ftp'd files rather using godaddy. june (latest).
from until october fine. in october (as far able tell) started getting malicious php code hitting files. eval() code , can't seem stop it. every friday happens. driving me crazy. don't know coming from, why happening, nor how stop it.
i bought rsfirewall, thinking block attacks , still happens. changed of passwords. still happens.
i called godaddy , asked them , told me in destinationself.com site allowing access someone. pretty have rockettheme products on site. have jce , facebook intergrated photo album product. can't think of name.
my plan assume godaddy correct site , remove extensions , wait see if happens again.
can offer assistance? thanks!
billy
[mod note: moved general forum security forum;]
to you, in future, find correct forum topic please read which forum post question have put together.
read , follow detailed advice in topic http://forum.joomla.org/viewtopic.php?f=621&t=582854. provide reports thread @ points requested when security experts able assist further additional issues.
to you, in future, find correct forum topic please read which forum post question have put together.
read , follow detailed advice in topic http://forum.joomla.org/viewtopic.php?f=621&t=582854. provide reports thread @ points requested when security experts able assist further additional issues.
Comments
Post a Comment