I also tried to backup our website using akeeba, and it gave me Warnings about files not existing anymore. Most files are from
folder.F0xAutoConfig
I don't know what to do. I don't want to meddle with it for the reason that it may go worst.
Moderators: mandville, General Support Moderators
folder.F0xAutoConfig
Strange that your cpanel say that Wordpress files not existing anymore.... Are you sure you have joomla site?
This error say that you have joomlashine.com template and then the question is is your template still installed correctly?
I was confused too if our website is created with joomla or wordpress. But we are currently using a joomla for our administrator. I also asked the developer of what he used to create our website, and he answered Joomla. Will using standard template affect our website in any way?Rondeb wrote: ↑Tue Nov 03, 2020 12:30 pmStrange that your cpanel say that Wordpress files not existing anymore.... Are you sure you have joomla site?![]()
This error say that you have joomlashine.com template and then the question is is your template still installed correctly?
Use a joomla standard template to see if the site is working again.
Greatings Ron![]()
The other templates actually works. I guess the template our website is using is not installed correctly anymore. Any suggestions as to how I can reinstall the same template?Rondeb wrote: ↑Tue Nov 03, 2020 12:30 pmStrange that your cpanel say that Wordpress files not existing anymore.... Are you sure you have joomla site?![]()
This error say that you have joomlashine.com template and then the question is is your template still installed correctly?
Use a joomla standard template to see if the site is working again.
Greatings Ron![]()
Hello,
I just found out that my license PRO to the theme has already expired. Is there a chance that the expired license is what is causing the error and the lost of files?
I thought so too, since the subdomain of my website still works. And it uses the same theme. I do have a backup. I've been wanting to restore it to its previous version, but the problem is, I'm hesitant to lose the current data we've uploaded to it.
It gives errors. Though, the theme also exists in another folder. In the subdomain folder. And the subdomain works just fine.
I tried following the steps with the link that you've sent. And I ended up seeing the error "Warning: require_once(/home/[ redacted ]/public_html/modules/mod_news_pro_gk5/helper.php): failed to open stream: No such file or directory in /home/[ redacted ]/public_html/modules/mod_news_pro_gk5/mod_news_pro_gk5.php on line 17". The problem is, the template of our website is pre-built. We used JSN Time 2 from Joomlashine.com. And there are already files that can not be used in our file manager anymore, but are still existing in it.sozzled wrote: ↑Tue Nov 03, 2020 5:35 pm See also the general guidelines for working through HTTP 500 Internal Server Error problems at viewtopic.php?f=706&t=976319
Our website is now up and running again. I copied each of the helper.php of our subdomain that was missing from our main domain since it was the error that kept appearing after I activated the debug system from our admin page. Thank you for the help sir!
[ redacted ]
Suspect the website may have been hacked or, at the very least, attempts have been made to hack the site.jekim16 wrote: ↑Mon Nov 09, 2020 2:50 amForum Post Assistant (v1.6.1) : 9-Nov-2020 wrote:Last PHP Error(s) Reported :: wrote:[09-Nov-2020 02:46:29 UTC] PHP Warning: include(): Failed opening 'anti10.php' for inclusion (include_path='.:/opt/alt/php73/usr/share/pear') in /home/[ redacted ]/public_html/indeeex.php(4) : eval()'d code(1) : eval()'d code on line 19
Thank you for your answer. Any suggestions on what I should do?
Also, there are files existing in my file manager that might be the same with the anti10.php since it also has an "anti" to its file name which has this inside:
Well, the codes are encrypted, so I don't understand it. It is also a pre-coded file since it came from Joomla. I was not the one who made it.
Joomla does not encrypt its scripts. The contents of that file did not originate from Joomla.
Thank you!toivo wrote: ↑Mon Nov 09, 2020 8:32 amJoomla does not encrypt its scripts. The contents of that file did not originate from Joomla.
Several factors, including the URL from one of the 'anti' files above, show clearly that this website has been compromised. This topic will now be moved to the 3.x Security forum, where the sticky topics contain advice how to clean hacked sites and follow best security practice.
I already updated everything that can be updated. Any way that I can determine what these suspicious files are?mandville wrote: ↑Mon Nov 09, 2020 5:46 pm ok from my side, i recall that those file names were popular around december last year,.
the bot that placed them no seems to be making a revisit for the shell script .
you will no doubt have lots of other files in our directory like joomlahide and joomla/zip
i wont kudos the defacer or the name some of the other distinctive files as they are named after him.
needless to say you have LOT of out of date extensions, any one of which could have enabled the hacker access