com_malscan — Documentation
com_malscan is a backend malware scanning component for Joomla. It scans your site's files for known malicious code patterns, tracks changes against a baseline snapshot, and lets you quarantine or restore suspicious files — all from your Joomla admin panel.
1. Installation
- Go to System → Install → Extensions in your Joomla admin panel.
- Upload the
com_malscan_v1.3.1.zipfile you received after purchase. - Once installed, find Malware Scanner in the left admin menu.
2. Generating a Baseline
Before your first scan, generate a baseline — a snapshot of your current file hashes, used to detect future changes.
- Go to Malware Scanner → Core.
- Click Generate / Reset Baseline.
Only generate a baseline when you're confident your site is currently clean — this snapshot becomes the reference point for detecting future tampering.
3. Running a Scan
- Go to Malware Scanner → Scan.
- Click Start Scan.
- The scan checks your files against:
- Known malware/webshell signatures (e.g. injected eval/base64 code, known backdoor filenames)
- Changes against your saved baseline
- Known vulnerable extension versions installed on your site
- Progress is shown live; large sites are processed in batches to avoid timeouts.
4. Reviewing Findings
Go to Malware Scanner → Findings to see everything the scan flagged, with a severity rating (High / Medium) and a short description of what was matched and why.
5. Quarantine & Restore
From the Findings list, you can:
- Quarantine a file — moves it out of its live location so it can no longer run, without permanently deleting it.
- Restore a quarantined file — moves it back if it turns out to be a false positive.
6. Automatic Updates
com_malscan checks Joomla's built-in update system for new versions automatically. Update through System → Update → Extensions like any other component.
Requirements
- Joomla 4.x or 5.x
- MySQL-compatible database
Need Help?
See the product page for support contact details.


