Once I log in phpwcms.php loads but it looks like the image below
then I get a pop up that takes me to a **** site.
I've spent most of the morning trying to figure out what's causing it with no luck. I've gone to one of the sites that is running okay and used the good files to replace the ones in the site that I can't fix. I think I've done everything except a new install, but I'm not ready to do that yet.
Does anyone know what file could be the culprit? The site was hacked by going into folders that were 777 and leaving small scripts, so it must be phpwcms_templates, content/???, and all the other ones. I also don't know if the database could have been compromised, I looked and didn't see anything that would create a pop-up to the site, but who knows if I missed it.
I have done the update too... just incase someone cares.
Thanks,
-k