| Question: |
Now trying to go to the admin address сайта/admin.php and returns a message, enter data admin password boss, I introduce and sets, but I used to have other data, you begin to change the password (for security) I get kicked out of the admin, I can not under what data to enter, you can roll back to bases at least 5 days ago? the activity log has been written that the 2 numbers under the second IP someone came and changed the scripts, but what I don`t know exactly what to do? |
| Answer: |
Hello.&to enter data admin password boss and then log in as usual. this additional authorization to protect against hacks bots |
| Question: |
I came in, already changed in the database to users, a second user, the campaign is also admin here to:EMAIL 3ed0cba2130b0bb8f1946d2bc1de169c metro 2 0 0 4 0 1396554307 1396554307
|
| Question: |
Admin Area gives me an error when I enter the admin and the boss password |
| Answer: |
what`s the Admin Area ? enter data admin password boss only additionally, the authorization window and nowhere else. |
| Question: |
damn when I am entering me and gives an error Admin Area |
| Answer: |
give the address of the page where you see the error |
| Question: |
finance-group73.com/admin.php here gives the type widety username and password is admin and boss, I enter in admin area and does not go gives the error admin area all |
| Question: |
can`t go, as you asked - went, that`s probably who rushed already removed the entrance |
| Answer: |
please Check now.
|
| Question: |
everything comes!!! thank you very much!!! and you can see what the problem was? |
| Answer: |
ask how to implement this authorisation now |
| Question: |
as before, well, shell admin (blue bar) username and password, followed by the language selection and then check another computer, BUT this authorization was like you know let`s say you go on FTP with browser and climbs like a browser avtorizacija like Butoh secure authorization and all that :) |
| Question: |
but keep in mind that from the database I removed the second user who was also like admin, I sent the above data, here his IP was performed editing action scripts, the 3rd of the |
| Answer: |
so your site is hacked. |
| Question: |
well, I just realized that you can do now to avoid repetition? |
| Question: |
here are the steps and what was done:03.04.2014 10:44:33 finance-group IP Authorization in the admin panel of the website (login and password). 28.03.2014 15:29:21 finance-group IP Change script settings 28.03.2014 15:28:48 finance-group IP Authorization in the admin panel of the website (login and password). |
| Answer: |
start by changing passwords and updating website scripts to the latest versions you can check the website http://www.revisium.com/ai |
| Question: |
thank you Eugene! I have changed |
| Answer: |
OK
|
| Question: |
And what is the yellow message appears at the top when I go in Cpanel ?TRIAL LICENSEThis copy is a trial version and will expire at the end of the trial term. You will need to upgrade to a paid copy to continue using the software after that term. |
| Answer: |
this is a temporarily, to the website not applicable |
| Question: |
clear! thank you! |
| Answer: |
OK
|
| Question: |
Eugene tell me please, in the admin area DLE bottom red error:Attention security bug:File /templates/.htaccess is writable which is contrary to the security policy of the script. Set this file to CHMOD 444.I go to Сpanel and in this folder there is no such file, it is hidden or what:? |
| Answer: |
this is Sistemnyi file that would make it visible, select show the system files when you run file Manager |
| Question: |
It is necessary as I understand it through FTP Manager any comes? By the way, I found the bash shell |
| Answer: |
delete was and check for viruses. change the rights on 44 can toleo via the file Manager pane |
| Question: |
for some reason there when you put the rights 444 he never changes, leaves the same, here is log from FTP:Status: Change permissions on/public_html/templates/.htaccess` to `444 Comando: SITE CHMOD 444 .htaccessОтвет: 200 Permissions changed on .htaccessСтатус: Getting directory listing...Command: PASVОтвет: 227 Entering Passive Mode (149,13,0,50,151,74)Team: MLSDОтвет: 150 Accepted data connectionОтвет: 226-Options: -a-l Response: 226 11 matches totalСтатус: List of directories izvietotas: Getting directory listing...Command: PASVОтвет: 227 Entering Passive Mode (149,13,0,50,224,30)Team: MLSDОтвет: 150 Accepted data connectionОтвет: 226-Options: -a-l Response: 226 11 matches totalСтатус: the List of directories retrieved |
| Answer: |
to change the rights to 444 only via file Manager control panel |
| Question: |
I accidentally pressed skip this window in falavam Manager Show hidden files (starting with dot).I put again you could choose? |
| Question: |
all I found, underneath was reset interface changes |
| Answer: |
OK
|
| Question: |
Eugene thanks for the tips! Very glad to have you in the team with experience in this case. |
| Answer: |
OK
|
| Question: |
The hacker screwed up again chtol? I try to go to any internal page of the site and gives an error:Not FoundThe requested URL /2014/03/23/ was not found on this server.Additionally, a 404 Not Found error was encountered while trying to use an an ErrorDocument to handle the request.In the admin everything works fine, try to click here kind of any news. |
| Answer: |
did you touch the file .htaccess? |
| Question: |
well put law 444 on everything as it was written in the admin |
| Question: |
there were red errors, of the type put law 444 on all files .htaccess |
| Question: |
again chtol puts 644 and do not care for the mistake? |
| Answer: |
you file anything changed? |
| Question: |
no, I threw that standard in archve engine was |
| Question: |
well, in DLE in the admin area below was a type error and change in law .htaccess in other folders, I changed and put right on the 444`s all, nothing else was edited |
| Answer: |
how, and why you have it empty? return Prazdny file |
| Question: |
which is at the root of the www ? |
| Question: |
all Eugene I returned!! let me at least replenish your mobile phone balance? you and I do today to help, and piggy banks at the expense of the hard workers on the website I see :) |
| Answer: |
there is no www, the root of the site is public_html, but www is a link, a shortcut if You so clear to public_html. |
| Question: |
well I was there and filled in, how can I thank you? |
| Answer: |
leave a review on any site of hostobzor it will be the best thanks Thanks |
| Question: |
left comments on 4 sites, although encountering contradictions your service I`m sure you smart guys and moving in the right direction, no matter how many projects I did not create - I will take you and domain and hosting, you really like me, everyone who starts a business I will recommend you, good luck in your business! |
| Answer: |
thanks |
