Menu

Topic-icon Site keeps getting infected even with SecurityCheck Pro

More
3 years 3 weeks ago #4538 by Jose
Hi Jeff,

and, instead of the normal AutoSSL modified timestamp of today's date at 5:23am, it has a timestamp of December 11, 2009 8:01pm

An attack can't do this, so there is a backdoor/shell used to change the timestamp.

and found this file: /libraries/joomla/model/class.php - not part of the Joomla core files, so I looked at the code:

It's a form to upload files.

Regards,
Jose

Please Log in or Create an account to join the conversation.

Time to create page: 0.063 seconds
Powered by Kunena Forum

Login or Sign In