| Question: |
Good day! My sites don`t open - it account is blocked. Why? |
| Answer: |
Hello. your account was once again sent spam utochnite what script You have in the folder /home/dnipro88/public_html/shine-lady.com/libraries/legacy/model / far away |
| Question: |
I`ll look into it, but why no warning? how could I know that from my account, something sent? |
| Question: |
I guess it jodlowski files last modified in October of 2014, according to information in the file Manager. If this does not disrupt the operation of the sites, you can try to remove them |
| Answer: |
potamu that the account referred spam. you must follow their website. regularly check and perform updates. |
| Question: |
how can I check that account sletta spam? there is a specific way? you take silence and disable sites without notifying. If I, for example, on a trip, they and week so could be disabled? super-service.the model folder removed, I do not know its value and don`t know whether it was when you created the site |
| Question: |
without this folder, the site is not working |
| Question: |
folder returned, went to the admin panel - a bunch of some registered users, while the site has no registration forms, all removed, all the rights set prohibited, except super user. should help |
| Answer: |
good. also scan your website on Virsi. |
| Question: |
OK, will do |
| Answer: |
well |
| Question: |
Hello, scan the sites for viruses in cPanel, found nothing, can you suggest how else can I check? |
| Answer: |
How can you skadrowane? |
| Question: |
Using \"virus scanner\" in СЃPanel on the tab \"Advanced\". Just another address to login to admin area added an extra word, which would complicate the access to it |
| Answer: |
check for viruses http://www.revisium.com/ai |
| Question: |
I go to the file Manager at /usr/bin/php /home/dnipro88/public_html/shine-lady.com/libraries/joomla/database/driver/view41.php (link to the virus you sent me by mail)in the folder driver no such file view41.php |
| Answer: |
We have already removed it. It was a virus. |
| Question: |
updated the site to version Joomla 3.4.7, now it should be all right |
| Answer: |
ok
|
| Question: |
Good afternoon. Got a letter in the mail that shine-lady.com virus:dnipro88 182722 0.0 0.0 11076 310536 ? S 17:15 0:00 /usr/bin/php /home/dnipro88/public_html/shine-lady.com/plugins/system/nnframework/language/start50.RRA already updated it last week to version Joomla 3.4.7, 3.4.8 and then to. What else can I do? this problem is massive for sites on Joomla or the only problem with this site? |
| Answer: |
have you updated the net website? checked before updating , manly whether passwords? |
| Question: |
I checked various online tools, then updated, changed address to log into the admin and password. Now I want to check out the website at https://revisium.com. But for this there is a point \"3. to connect to the server via ssh, navigate to the folder of the site\". How can I do that? I only have ftp data |
| Answer: |
access to ssh, we do not provide the shared hosting. |
| Question: |
Checked all files for all sites locally, pomosty tool aibolit. Removed redundant files, cleaned the infected files from the virus code, re-scanned - became normal. To see shine-lady.com? |
| Answer: |
you have a website on joomla? |
| Question: |
Yes, 3 website, I did check all three. One site that is blocked, already updated to version 3.4.8, and the other two now updated to version 1.5.26, but I`m working to translate them to version 3.4. And while the program aibolit has shown vulnerabilities in all three sites, I have corrected them in accordance with the recommendations of this program (given the problems with Jumla, which began last week). |
| Answer: |
tell me how you managed to update blocked website? |
| Question: |
it was updated on Friday, and viruses cleaned yesterday |
| Answer: |
OK, access to the site is open, proveriat it again |
| Question: |
Thursday - to version 3.4.7, and on Friday - to version 3.5.8 |
| Question: |
not working, gives error 500 |
| Answer: |
wow, it 3.5*.... seriously they have there... |
| Question: |
I was wrong, 3.4.8) |
| Answer: |
after the update works fine? we had complaints from the updated that the website worked properly. some of the site after the updates does not start. |
| Question: |
everything worked, it was in the file session.php (yesterday I must have put it on this website, replacing the original, and it was only used for Joomla 1.5.26).At first glance, the code has no malicious scripts (which were before cleaning) may now check on your side to be 100% sure that I`ve cleaned it? |
| Answer: |
we sepately check. but all the antivirus can not find. |
| Question: |
OK |
| Answer: |
the antivirus found nothing. proverit still Aibolit |
| Question: |
thanks, Yes, now I download files from the server and run the test Dolittle |
| Answer: |
ok
|
| Question: |
at Dolittle everything is OK |
| Answer: |
ok
|
