[FLEXIcontent v2.0.0] Hacked website @ J2.5.28 needs to be migrated to 3.4.x and FLEXIcontent v3.0.x

acceptgiro
Topic Author
Offline
New Member

8 years 4 months ago - 8 years 4 months ago #59024 by acceptgiro

Replied by acceptgiro on topic [FLEXIcontent v2.0.0] Hacked website @ J2.5.28 needs to be migrated to 3.4.x and FLEXIcontent v3.0.x

how would I be able to do that? How to know which of those files are backdoors? Is there a tool that removes them? Or am I free to remove them manually? Including the core joomla files like the deamon.php file?

Last edit: 8 years 4 months ago by ggppdk.

The topic has been locked.

acceptgiro
Topic Author
Offline
New Member

8 years 4 months ago - 8 years 4 months ago #59025 by acceptgiro

Replied by acceptgiro on topic [FLEXIcontent v2.0.0] Hacked website @ J2.5.28 needs to be migrated to 3.4.x and FLEXIcontent v3.0.x

O, btw, to answer your question. Yes I updated every component. Apperently and logically it will leave the non core files which are hacked files. I thought an audit and rsfirewall would fix the hacks.

Last edit: 8 years 4 months ago by ggppdk.

The topic has been locked.

ggppdk
Offline
Administrator

8 years 4 months ago - 8 years 4 months ago #59026 by ggppdk

Replied by ggppdk on topic [FLEXIcontent v2.0.0] Hacked website @ J2.5.28 needs to be migrated to 3.4.x and FLEXIcontent v3.0.x

Hello

this might work:
- take website down
- make a backup of the joomla folder
- delete all files reported as suspicious, including core files
- extract Joomla package into the folder and then delete /installation/ folder
thus to get files that you deleted
- go to Joomla installer and re-upload FLEXIcontent and other components

-- Flexicontent is Free but involves a big effort on our part.
Like the our support? (for a bug-free FC, despite having a long list of functions) Like the features? Like the ongoing development and future commitment to FLEXIcontent?
-- Add your voice to the FLEXIcontent JED listing with a 5-star...

Last edit: 8 years 4 months ago by ggppdk.

The topic has been locked.

acceptgiro
Topic Author
Offline
New Member

8 years 4 months ago - 8 years 4 months ago #59027 by acceptgiro

Replied by acceptgiro on topic [FLEXIcontent v2.0.0] Hacked website @ J2.5.28 needs to be migrated to 3.4.x and FLEXIcontent v3.0.x

Doesn't flexicontent installation override the current database content of the flexicontent tables? Or any other plugin for that matter? Never knew that could work! Cool! gonna do that right away!

Last edit: 8 years 4 months ago by ggppdk.

The topic has been locked.

ggppdk
Offline
Administrator

8 years 4 months ago - 8 years 4 months ago #59028 by ggppdk

Replied by ggppdk on topic [FLEXIcontent v2.0.0] Hacked website @ J2.5.28 needs to be migrated to 3.4.x and FLEXIcontent v3.0.x

Hello

what i suggested is about PHP files only
and may work depending on the type of hack you have in your website

- there might be entries in DB that will result in module display executing PHP code
- or in other places too
- also you should change all administrator passwords
etc

Last edit: 8 years 4 months ago by ggppdk.

The following user(s) said Thank You: acceptgiro

The topic has been locked.

micker
Offline
Administrator

8 years 4 months ago - 8 years 4 months ago #59029 by micker

Replied by micker on topic [FLEXIcontent v2.0.0] Hacked website @ J2.5.28 needs to be migrated to 3.4.x and FLEXIcontent v3.0.x

for hack .. i recommend aesecure tools !

FLEXIcontent is Free but involves a very big effort on our part.
Like the our support? (for a bug-free FC, despite being huge extension) Like the features? Like the ongoing development and future commitment to FLEXIcontent?
-- Add your voice to the FLEXIcontent JED listing reviews. Thanks![/size]

Last edit: 8 years 4 months ago by ggppdk.

The following user(s) said Thank You: acceptgiro

The topic has been locked.