Oh wow. Ok. Thanks!

I know it's not your job but do you have any ideas on how to get rid of the hack or move forward? The only way I know is to wipe the site and rebuild it but that is usually long and difficult. Especially with this site!

Don't worry if you can't I am fully aware that it's not your job.
Thanks!
Megs

Hi,
first of all make a backup.

the most simplest way (also if you not have SSH access) is to find recently modified files, for each found file:
- If it is Joomla file then replace it with Joomla original file (same Joomla version)
- If this is Component file then replace it with original file (same component version)
- If it is not Joomla file and it is .php delete it (make backup before) - this is a backdoor

This could solve your problem, to avoid future hack you need to update your Joomla version and/or install some security tool like Admin Tool (https://www.akeebabackup.com/products/admin-tools.html)

There are many other efficient methods to clean your site, but you need to have SSH access and run some antivirus tool (ClamAV for Linux servers)

It's a very small hack since the only thing it is affecting is our ability to login into Easy Profile.

You can't login into Joomla (this is not due to Easy Profile).

Don't worry if you can't I am fully aware that it's not your job.

We born as expert in IT security

Anyway, this is simple to solve, I have fixed this on your site, you had a malicious code in your index.php (I have get your FTP data from oldest topic).

In your system I see also many backdoors, please delete it:
- /images/1index.php
- /libraries/x.php
- /libraries/index.php

I do not know if the hack is completely removed, but the login problem is gone.

Seriously, how/where can I donate because I'm using the free version of Easy Profile and you've been excellent from the beginning!

it is not necessary