Unfortunately, the username and password you have entered do not match!
Not a member? Register | Lost your password?
Forgot your username? | Login with order number
Close Panel

Registration

Unfortunately, this username is already taken!

Unfortunately, this e-mail address is already used!

Please retype the verification code.

All fields are required

Close Panel

Unexpected

Welcome, Guest
Username Password: Remember me
Forgot your password? Forgot your username? Create an account
Reply Topic
New Topic
  • Page:
  • 1

TOPIC: Unexpected

Unexpected 2 years, 7 months ago #7921

  • japple8
  • OFFLINE
  • Fresh Boarder
  • Posts: 3
I fell prey to to a hack last night. Instead of displaying my site I got a : "syntax error unexpected > in index" message. Not too sure about the exact message I was in a hurry to get the site back up. The site has been restored.

I made all of the changes recommended by the RSFirewall SYSTEM CHECK today (I know, a day too late). Is there anything else that will help prevent future attacks?

One other thing. The SYSTEM CHECK gives the following message: "Your PHP configuration is not secure."

When I click the button the fix the problem and rescan I get the same message.

Thanks much.

John
Reply Quote

Re:Unexpected 2 years, 7 months ago #7930

Hello,

The hack you've experienced came from a virus on your computer. This type of virus has become very common - it "sleeps" on your computer until you connect to your website's FTP. When it detects a FTP connection, it stores the username, password and host and automatically connects and modifies all index.php, index.html, default.php (default index files) in all directories by adding a line such as (just an example):
<iframe src="hacked.website.com/?click=123" style="visibility: hidden;"></iframe>


You need to:
1) Change your FTP password;
2) Clean your computer of the virus (and all computers you used to connect to the FTP account).
3) Replace the infected Joomla! files with the original versions from the Joomla! installation package. You can use RSFirewall! to check files for integrity and if you find anything that doesn't match, replace it.

The fix for the PHP configuration check does not work on all servers. It tries to create a new php.ini file in the root of your website (with secure php settings) and if the server allows this, it will read the new php.ini.
If you get the message again, then it did not work on your server. You can contact your hosting provider, send them the php.ini located in the root of your Joomla! folder and ask for further assistance.

Regards!
Please note: my help is not official customer support. To receive your support, submit a ticket by clicking here
Regards,
RSJoomla! Development Team
Reply Quote

Re:Unexpected 6 hours, 1 minute ago #0

Hello,
This is an automatically generated message.
We do not monitor these forums. The forum is provided to exchange information and experience with other users ONLY. Forum responses are not guaranteed.

However, please submit a ticket if you wish to receive our support. Our ticketing system is the only way of getting in touch with RSJoomla! and receiving the official RSJoomla! Customer Support.

For more information, the Support Policy is located here: http://www.rsjoomla.com/support-policy.html.

Thank You!
PLEASE NOTE: This topic is NOT locked and you can add replies to it. Other users are free to reply as well. This message has been generated by a bot and has no effect on the topic whatsoever.
Reply Quote
Reply Topic
New Topic
  • Page:
  • 1
RSJoomla! Forum
Joomla! Security
Help! My site has been hacked
Moderators: alex, alexp, octavian, bogdanc, andreic
Powered by Kunena
Time to create page: 0.71 seconds
Feedback