| Question: |
Good afternoon.The site does not work sov-it.com can`t log in to the control panel? |
| Answer: |
Hello. Your panel is available. What error gives you? What were you doing on the website before it is unreachable? |
| Question: |
When you log in to the control panel:a Web page nedostupnost error: ERR_CONNECTION_REFUSED |
| Question: |
When you log on to the website: unable to access siteweb page at http://sov-it.com/ may be temporarily unavailable or permanently moved to a new address.ERR_CONTENT_DECODING_FAILED |
| Answer: |
please Wait, your issue is being dealt with. |
| Question: |
When you try to log in to the control panel (ISPmanager) writes: \"Firefox can`t establish a connection to the web server.gen.in:1500.\" |
| Answer: |
login address: https://163.172.124.96:1500 |
| Question: |
Looks like the site has again broken the attackers. Is it possible to see logs of when and who has access to the file structure (in particular, we are interested in the file index.php - change it in the first place). |
| Answer: |
the Question referred to the administrator, wait for amp. |
| Answer: |
we are now provem Your website for viruses will predostavil You report. Log file changes are there. Upon completion of the audit we will provide You with a report. |
| Question: |
Hello. The problem remains the same. Your the scan report and has not received. Checked files. Viruses are only in the mail folder, but they are on the website`s performance is not affected. Likely to crack attackers exploit vulnerabilities in the php for implementation in the structure of the site. How can I tell which version of php used by our website? Is it possible to translate it to the latest version where the vulnerability is already patched? |
| Answer: |
Hello. on your behalf performed a number of malicious scripts. report OS the scan was you fundamentally accaduta. now we razmestili new. what scripts rajoitus on your account? what is phpi2ID01.c ? mine = stratum+tcp://42wJtiNXdRT4NYSeRSNUDgd16pziBG7dieUbwMyazRA9h4PFBs2MsHkN5oz3hr9P7ZihZ2ES2qhYaZypEYjsunAiGBmezFN:[email protected]:3333/
xmr |
| Question: |
Perhaps You posted the report. But we know is not notified. And with the restoration of the site the contents of the folder sov-it.com destroyed. Now the site is again hacked. Which scripts work - is unknown. If you restore again will be destroyed contents of the folder. You can send us a report by E-mail [email protected] and not in a folder? |
| Question: |
By the way, where is the file that You found is? |
| Answer: |
Expect amps., skanirovanie running again |
| Question: |
But please, we don`t forget to notify the results of the inspection and report. And You didn`t answer the question about the version of php. |
| Answer: |
the file is executed on the server on your behalf. the report in the folder /data / www/AI-BOLIT-REPORT-__-3264-09-10-2017_15-59.html |
| Question: |
Thanks for the report. Study. Question about php while waiting for a response. |
| Answer: |
the Version of PHP you are available in the panel in the tab PHP |
| Question: |
In panel four specified php version: 5.3.29 (alt)5.4.16 (native)5.6.31 (alt)7.0.21 (alt)to Manage them does not work. How to choose the right, if ticks are all on and not removed? |
| Answer: |
choose mozhnog only in cgi mode first selects AREIM domens cgi and then choose the php version |
