# Your Hosting Account Has Been Compromised

If your hosting service has been compromised, it doesn't necessarily mean that a third party has accessed your Clouduxe account directly.

### Signs of a Compromised Account

* **Strange content** appears on your website.
* **Spam emails** are being sent from any of your email accounts.

  <div data-gb-custom-block data-tag="hint" data-style="warning" class="hint hint-warning"><p>If you notice outgoing spam from your mailbox, contact us immediately to prevent account suspension. Sending spam is against our Terms of Service.</p></div>
* **Suspicious login activity** on your hosting account.

### Recommended Steps to Resolve a Compromised Account

If you suspect that your account has been compromised, follow these steps to regain control and secure your account:

1. **Reset your passwords**:

   * Change the password for your cPanel, webmail, CMS (e.g., WordPress, Joomla), your Clouduxe account, and any devices used to access these services.

   <div data-gb-custom-block data-tag="hint" data-style="danger" class="hint hint-danger"><p>Use strong, unique passwords for each of these accounts to minimize the risk of further compromise.</p></div>
2. **Scan using Immunify360**:
   * Run a full security scan on your hosting environment to detect and eliminate any malware or suspicious files.
3. **Update outdated plugins and themes**:
   * Ensure that your CMS plugins, themes, and core files are up to date to close any security vulnerabilities.
4. **Enable Two-Factor Authentication (2FA)**:
   * Add an extra layer of security by enabling 2FA on your cPanel and other accounts.

{% hint style="info" %}
Two-Factor Authentication significantly reduces the risk of unauthorized access by requiring an additional verification step.
{% endhint %}

### Need Help?

If you notice any unauthorized activity or are unable to resolve the issue, feel free to contact our support team. We’re here to assist you in securing your account and preventing further compromise.

{% hint style="success" %}
Our team is available 24/7 to help you resolve any security issues.
{% endhint %}


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.clouduxe.com/cpanel-control-panel/your-hosting-account-has-been-compromised.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.