Site keeps getting infected even with SecurityCheck Pro

5 years 3 months ago #4538 by Jose
Hi Jeff,

and, instead of the normal AutoSSL modified timestamp of today's date at 5:23am, it has a timestamp of December 11, 2009 8:01pm

An attack can't do this, so there is a backdoor/shell used to change the timestamp.

and found this file: /libraries/joomla/model/class.php - not part of the Joomla core files, so I looked at the code:

It's a form to upload files.


Please Log in or Create an account to join the conversation.

Time to create page: 0.205 seconds