skully Posted July 27, 2018 Posted July 27, 2018 I know word press sites were hacked, I found new folder (F0x) that seems to indicate Drupal and Joomla may be infected also. See screen shot of F0xConfig2 folder below...
wolstech Posted July 27, 2018 Posted July 27, 2018 I saw those as well. I have to look through the accounts listed inside though in order to see if they're actually hacked. The WHMCS ones are unlikely to be affected since that program is prohibited and won't even run here. EDIT: Just confirmed that 2 of the Joomla sites listed inside that folder are also compromised... Also, how are you able to still see that folder when you're suspended?
skully Posted July 27, 2018 Author Posted July 27, 2018 I had made screen grab earlier while looking at directory.... before suspension
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now