The virus to be stored as a file again and again how to solve?

Please help.
Is there a website on joomla, of course with holes in the scripts that can't find. Decided to just change the permissions for files 500. Kind of like with the same rights files overwrite impossible, but the virus still appears again (js in the head tag). Do I understand correctly that you need to disable server-side php function popen,dl,set_time_limit,passthru,system,exec,proc_open,shell_exec,proc_close ?
July 9th 19 at 10:29
3 answers
July 9th 19 at 10:31
For the future:
Keep on your local PC to SVN, where to fill in all release builds of the web.
ALL site content is equivalent to what is in your repository. Or not all, and the chassis, which can be run remotely or vulnerable from the outside. PHP, JS, CSS, CGI, etc. images and files - forest.
Daily backups of the database.
And we need this in order to identify what you broke, and what was changed. Download the website yourself, put in the working copy directory and run the check for modifications.
Restore the site in 5 minutes.
July 9th 19 at 10:33
the question was not that. At the time of finding ways of hacking I need to quickly stop the entry of viruses. - lester55 commented on July 9th 19 at 10:36
when the virus is inside, it can change the right files myself... - Peter.Oberbrunner84 commented on July 9th 19 at 10:39
and how? using what functions? - lester55 commented on July 9th 19 at 10:42
: chmod, chown, nothing new - Garland36 commented on July 9th 19 at 10:45
July 9th 19 at 10:35

Find more questions by tags HostingJoomlaviruses