This article is intended for more or less exprienced webmasters or advanced users. It contains general algorithm and personal experience of cleaning malware from websites.

If you happen to have any additional questions, fell free to contact our tech supprt. We are always glad to help.

• You must always start the cleanup with website administrator's computer. Half of all infections happen because of password thefts (FTP or hosting control panel). Better if you use not only antivirus that's installed on your computer, but another one as well, as the first antivirus might have missed the virus.
• As the second step, download all website files to your PC, make sure to create a backup copy, then check working copy with antivirus. If you are using WebGuard hosting, it'll be better to use virus scanner integated in our hosting control panel file manager. It detects web-viruses significantly better than traditional antivirus software and in most cased finds 100% of malicious code on websites.
• If your website is located on other hosting, you'll be checking your downloaded copy. It is recommended to use Avast or Nod32 antiviruses, as DrWeb and Kaspersky antiviruses often miss simple injections of foreign scripts. Worth noting that checking your site with desktop antiviruses will help you only in light infection cases. If after your cleanup your site has been infected again, consider using WebGuard antivirus next time you clean your website.
• After scan is complete and you have a list of infected files in a report file, proceed to cleaning: 

Continue...

WebGuard hosting control panel is rather simple and in most cases fairly comprehensible. Nevertheless, there are several questions that may arise even with an experienced web-master. This article strives answer those.

1. Isolation for your different websites

In order to let you fully isolate your websites from each other, we give reseller (hosting administrator) priveleges to all of out clients (except the econom-class rate plans). After issuing and paying for the hosting requests, you wil recieve on your e-mail two letters with control panel access credentials with logins wgNNNN and wgNNNNu1 (NNNN - a 4-digit number). First login is for administrator account. You will use it to create ordinary user hosting accounts, which you will use to host your sites. These accounts can be created under "users" menu when logged under administrator account. All other actions related to website functioning can be completed with ordinary user account rights (logins wgNNNNu1 or those you've created as administrator).

2. Data transfer via secure protocol SFTP

For security purposes we disable FTP protocol on our servers. Instead we use its secure version SFTP.

3. WebGuard backup system

All sites on hosting are regularly backuped to a separate server. Our system is unique in a way that it allows to store significantly more different backup copies compared to traditional backup systems. In case you need an old copy of your website, contact tech support and specify the date of the backup you need. We shall make an archive and put it into "backups" folder in your hosting account root.

We wish you successful work!!!

Instead of standard backup utilities embedded in control panel we have developed and launched our own backup sytem. Unlike traditional backup systems, our repository analyses and saves state of your site and databases almost every day*, saving only modifications made to website during day. This allows, depending on your website modification dynamics, keep up to 730 website snapshot copies available.

Apart from that, our system allows for precise monitoring of all modifications made to site up to every line of source code. This can be a significant help while searching for vulnerabilities and unknown modifications of malware in most complicated cases of malware infection.

If you want to download backup copy of your website or roll it back to a prior date, contact our tech support service (in your personal cabinet). Our specialists will send you the list of all available copies and will do the rollback or give you the requested archive. Soon this option will become available in hosting control panel as well.

* Backuping timetable may differ for different websites since it depends on various factors. We guarantee that every website will have at least 20 new backup copies stored every month.

Best regards,

webguard.pro tech support

In order to work with your mailbox, you can use our mail web-interface. To authorize you need to enter full e-mail address and it's password. This can be convinient if you access mail from several different computers or are currently traveling.

For common e-mail client configuration, use following parameters:

Server address (imap or pop3): mail.webguard.pro

Encryption method: STARTTLS

Authentication method: password

Port: 993 (for IMAP) or 995 (for POP3)

Smtp server address (outcoming mail): mail.webguard.pro

Encryption method: SSL/TLS

Authentication method: password

Port: 465

Login: full mailbox address (for examaple, user1@example.com)

Password: mailbox password

These are optimal parameters that provide you with secure e-mail functioning via an encypted channel. If, for some reason, you aren't able to configure mail client yourself, contact our tech support. We are always glad to help you.

Возможно, есть люди, кто этого ещё не знал. В последней оф. версии sourcer для joomla 1.5.x используется уязвимая версия nnframework.

Уязвимость есть начиная с версии nnframework 12.4.4 и ниже.

Даже если у Вас не установлен сам sourcer , но стоит старый nnframework , нужно обязательно обновиться.

В нашем пакете последняя версия sourcer и актуальная на момент этой публикации версия nnframework (с закрытой уязвимостью)

Если сам sourcer  Вам не нужен, после установки и автоматического обновления nnframework, sourcer  можно удалить.

Скачать Sourcerer-v2.11.4.1.zip