Portal Home > Knowledgebase > Articles Database > SPAM problems
SPAM problems
| Posted by hkwebhost, 11-14-2014, 03:14 AM |
| Hello, can anybody recommend a cyber security company that can delete malware/virus from websites in order to stop SPAMMING? The regular methods like upgrading CMS / plugins / Passwords and running malware scans are not working.
|
| Posted by madaboutlinux, 11-14-2014, 03:29 AM |
| I would scan all the files using a Windows anti-virus once. There may be separate spamming scripts inside the plugin directories and not injected in one of the script so upgrading them may not help.
|
| Posted by TheSHosting, 11-14-2014, 03:38 AM |
| Scan your sites using maldet, clamscan, sucuri online scan.
Update plugins, themes to latest version.
Check logs and find out which account is sending out spam mails.
Download files to your PC and scan using an updated antivirus.
Change the password of email accounts sending out spam.
Enable spamassassin for all accounts.
Set SPF for all accounts.
Install mailscanner. Enable mail content and email attachment scanning.
Check whether you have set full permission for any directories on the server : find . -perm 777. Revert it to 755 permission.
If the issue still persists then contact sucuri and they will manually scan and remove all infected files.
|
| Posted by MattE, 11-14-2014, 11:33 AM |
| I'd also recommend Sucuri; they do a good job to help confirm whatever results you see from maldet+clamscan and they can scan your site on an ongoing basis with e-mail updates.
Make sure to run updates/re-installs to your CMS & plugins after cleaning it out, as well. A full re-install would be best if you have the ability to do so.
|
| Posted by grapenut, 11-14-2014, 09:32 PM |
| i wrote an article not too long ago, you should take a look at it. you can view it at the link below:
http://www.webhostingtalk.com/showthread.php?t=1340130
http://hostsec.net/stop-those-pesky-spammers/
keep in mind that most scanners aren't going to find the junk, a lot of them use legitimate code and would cause too many false positives on your average scan.
so the best thing is once you find one malicious file, dig around for others with the same time stamp. also look at your access logs for any weird files with POST requests. these two things alone can have you taken care of in no time at all.
Last edited by grapenut; 11-14-2014 at 09:36 PM.
|
| Posted by Srv24x7, 11-15-2014, 02:11 AM |
| Hi,
The best option for you at this time would be go with sucuri, as they provide this service and will get the site cleaned 100% for you. Register with them, and provide the FTP access to the site and also myphpadmin access and they will clean it.
|
Add to Favourites 
Print this Article
Also Read
