After the update of a website from Joomla 3.4.7 to 3.4.8, it has been created the file “restoration.php” (administrator/components/com_joomlaupdate/restoration.php) with the following content:
<?php
defined('_AKEEBA_RESTORATION') or die('Restricted access');
$restoration_setup = array(
'kickstart.security.password' => 'χχχχχχχχχχχ .....χχχχ',
'kickstart.tuning.max_exec_time' => '5',
'kickstart.tuning.run_time_bias' => '75',
'kickstart.tuning.min_exec_time' => '0',
'kickstart.procengine' => 'direct',
'kickstart.setup.sourcefile' => 'C:\xampp\htdocs\mysite/tmp/Joomla_3.4.7_to_3.4.8-Stable-Patch_Package.zip',
'kickstart.setup.destdir' => 'C:\xampp\htdocs\mysite',
'kickstart.setup.restoreperms' => '0',
'kickstart.setup.filetype' => 'zip',
'kickstart.setup.dryrun' => '0');
In other websites it has not been created the previous file.
Is it normal or it is something dangerous? Must be removed or be renamed the file restoration.php? Should i reset the file restore.php from an older backup?
Also I inform you that the administrator area is protected and hided. I read your previous answer (https://www.akeebabackup.com/home/news/1605-security-update-sep-2014.html) but I would need some more help.
Please inform me about what should i do?
Thank you