Backup those files BEFORE manually editing them
Started by LandyVlad, May 09, 2020, 04:03 AM
0 Members and 1 Guest are viewing this topic.
QuoteIt does appear as though there is a command on your account which leads us to believe that the account is compromised. Due to this, we have had to suspend your account until such a time that you are ready to review, clean and secure your account.
Quotethere was a command running that was running the host command on the server.Your account was suspended as it's heavily compromised and running DDoS/Spam scripts:
QuoteHere is a virus scan I ran on your account, this list some (but not all of the potential issues):edit: details removed as contained direct paths. I'm not sure how to interpret that, and what I need to do?
QuoteApply Filter: Only show the error messages of this URLhttps://gsx1400owners.org/forum/index.php?topic=4767.msg62845Apply Filter: Only show the errors with the same message2: filemtime(): stat failed for /home/gsxowner/public_html/forum/attachments/17136_7050a59fa56a95f8ae03b6a2c338c4a728e3dde4Apply Filter: Only show the errors from this fileFile: /home/gsxowner/public_html/forum/Sources/Display.phpLine: 1482
Quote from: LandyVlad on May 09, 2020, 04:35 AMin cpanel I turned 'ModSecurity' on,. I have nbo idea what that does or is but it seemed like a good idea and the system says its recommended. I went in and updated wordpress and all my plugins and themes.Next is to look at SMF but no idea what I should be looking for !?Error logs today have a heap of these
QuoteOnly show the error messages of this URLhttps://gsx1400owners.org/forum/index.php?topic=4767.msg62845Only show the errors with the same message2: filemtime(): stat failed for /home/gsxowner/public_html/forum/attachments/17136_7050a59fa56a95f8ae03b6a2c338c4a728e3dde4Only show the errors from this fileFile: /home/gsxowner/public_html/forum/Sources/Display.php
Quote from: Skhilled on May 09, 2020, 07:54 AMModSecurity, in theory, is supposed to help with your site's security. But it can also block legit users and accounts. So, look out for that.
Quote from: Skhilled on May 09, 2020, 07:37 PMI just realized...if you go to the main site:https://www.gsx1400owners.orgThen click on the "Forum" menu button the theme is missing.
Quote from: LandyVlad on May 10, 2020, 12:41 AMOK just did a repair settings and that theme issue seems to have resolved itself.Thank you
Quote from: LandyVlad on May 12, 2020, 11:40 PM@lurkalot thanks but out of interest - package manager shows 'current version installed' for that (and all) my mods.presumably that's not reliable then? Or does it draw data just from whats available in the mods section of the simplemachines site.
Quote from: LandyVlad on May 12, 2020, 11:43 PMSilly question but... how do I change my database password etc and still ensure the site is running afterwards ?
$db_passwd = '**********';
$db_name = '*****_*****';
$db_user = '*******';$db_passwd = '********';
Page created in 0.137 seconds with 27 queries.