Hi Bob,
I'm using MODx 2.50.
Without doing the restore instructions, I was able to "recover" the website by re-uploading the JS files and website looked and links were okay again. I noticed that the JS files in /js folder were all "0" size after the hack.
Problem is that I can't view the Manager section. All pages inside Manager are blank. See posted screenshot above. So I still can't edit the site. I also tried to re-upload the JS files inside Manager > Assets > ext3 but the Manager pages are still blank.
I plan to update to 2.6.5 by using your guide (Bob's Guide) to fix the hack and update to latest. Will it work?
And then I read somewhere that I need to unzip and merge files and not overwrite the directories. I only have Filezilla. Will Filezilla "merge" the files/folders? I also checked the Cpanel file manager, I click on files there but I don't see the merge options. I'm not that good with handling databases and files, I'm worried I will just make it worse.
I don't have the latest back-up of the site, that's why I'm in deep trouble now.
Anyway, any other tips and guide on how do I fix the hack?
Regards,
Rom
PS I see the config.core.php in the /root folder. I also see there's a core/config/config.inc.ph file.
Quote from: BobRay at Aug 09, 2018, 02:32 AMTechnically, you don't need an assets folder (and it can be renamed), so don't worry about that.
See if there's a config.core.php file in that directory. That tells MODX where the core directory is. See if it contains a correct path to the core.
Also, see if there's a core/config/config.inc.php file and if it contains the correct paths to the core, manager, and connectors directories.
What version of MODX were you running?
Is it possible that you were running a version of MODX Evolution? That can't be upgraded directly to MODX Revolution.
BTW, just upgrading your site to 2.6.5 will not help at all if the site has already been hacked. One option is to wipe the files and remove all DB tables, then restore a backup from before the hack.