Варианты решения Ваших вопросов

  хостинг
<< Назад       Не могу зайти в сPanel!

Вопрос: Здравствуйте. При входе в cPanel пишет что не верные учетные данные.
Ответ:

Здравствуйте

у вас много вирусов на сайте

/home/alexdps2/public_html/wp-cron.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-content/plugins/LayerSlider/sampleslider/blog.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-content/plugins/revslider/inc_php/base_front.class.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-content/plugins/wordpress-flash-uploader/tfu/lang/start.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-content/plugins/sliding-social-icons/tpls/left_css.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-content/plugins/wp-super-cache/wp-cache-phase1.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-content/themes/oneup.theme_.1.6.0/framework/php/help.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-content/themes/oneup.theme_.1.6.0/single.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-content/themes/twentythirteen/inc/functions.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-content/themes/twentyeleven/images/headers/sql.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-content/themes/twentytwelve/page-templates/file.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-content/themes/twentytwelve/languages/press.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-content/themes/twentytwelve/tag.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-content/cache/supercache/stt-chiptuning.com/новости/gallery.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-content/uploads/2013/07/footer.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-blog-header.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/__MACOSX/wp-content/uploads/2013/config.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-includes/images/search.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-includes/http.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-includes/class-wp-image-editor-gd.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-includes/ID3/getid3.lib.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-includes/ID3/module.tag.id3v1.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-includes/ms-blogs.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-includes/Text/Diff/Engine/string.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/wp-includes/Text/Diff/Engine/search.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/vimax.md/wp-content/plugins/seo-ultimate/includes/inc.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/vimax.md/wp-content/themes/twentytwelve/search.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/vimax.md/wp-content/themes/twentytwelve/js/dump.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/vimax.md/wp-content/uploads/2014/11/help.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/vimax.md/wp-includes/js/tinymce/langs/view.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/vimax.md/wp-includes/ID3/article.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/vimax.md/wp-includes/Text/Diff/Renderer/diff.php: Php.Trojan.StopPost FOUND
/home/alexdps2/public_html/vimax.md/wp-includes/locale.php: Php.Trojan.StopPost FOUND

Просьба принять меры

очистите и проверьте ваши сайты, смените все пароли

Ответ:


Реквизиты высланы на EMAIL

Вопрос: Как мог попасть вирус на хостинг?
Ответ:

очень просто, через уязвимость вашего сайта, вернее плагинов вашего сайта. а так же его вам просто загрузили ваши пользователи, вот, смотрите

uploads/2014/11/help.php это папка вашего сайта.

обновите движок сайта и его модули. все модули взятые нена официальном источнике - удалите. если тема тоже бесплатная и взятая из непроверного источника - удалиет ее

Вопрос: мы восстановили бэкап ,но сайты также не открываются
Ответ:

 о каком бекапе идет речь? бекап с вирусами?

 

Вопрос: Бэкап был сделан до появления вирусов,и находится в корне сайта
Ответ:

ну, мы только что проверили ваш аккаунт

malware detect scan report for duna.hostven11.ru:
SCAN ID: 123114-1645.709659
TIME: Dec 31 16:45:57 +0300
PATH: ./
TOTAL FILES: 17929
TOTAL HITS: 21
TOTAL CLEANED: 0

NOTE: quarantine is disabled! set quar_hits=1 in conf.maldet or to quarantine results run: maldet -q 123114-1645.709659
FILE HIT LIST:
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/shop/page/2/.options13.php
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80/%d1%87%d0%b8%d0%bf-%d1%82%d1%8e%d0%bd%d0%b8%d0%bd%d0%b3-chevrolet-s10$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80/%d1%87%d0%b8%d0%bf-%d1%82%d1%8e%d0%bd%d0%b8%d0%bd%d0%b3-chevrolet-s10$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80/%d1%87%d0%b8%d0%bf-%d1%82%d1%8e%d0%bd%d0%b8%d0%bd%d0%b3-volvo-s40-1-8$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80/%d1%87%d0%b8%d0%bf-%d1%82%d1%8e%d0%bd%d0%b8%d0%bd%d0%b3-hyundai-h-1-2$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80/%d1%87%d0%b8%d0%bf-%d1%82%d1%8e%d0%bd%d0%b8%d0%bd%d0%b3-infiniti-g37-$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80/%d1%87%d0%b8%d0%bf-%d1%82%d1%8e%d0%bd%d0%b8%d0%bd%d0%b3-lincoln-aviat$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80/%d1%87%d0%b8%d0%bf-%d1%82%d1%8e%d0%bd%d0%b8%d0%bd%d0%b3-audi-a6-c4-28$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80/%d1%87%d0%b8%d0%bf-%d1%82%d1%8e%d0%bd%d0%b8%d0%bd%d0%b3-toyota-camry-$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80/%d1%87%d0%b8%d0%bf-%d1%82%d1%8e%d0%bd%d0%b8%d0%bd%d0%b3-toyota-camry-$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80/%d1%87%d0%b8%d0%bf-%d1%82%d1%8e%d0%bd%d0%b8%d0%bd%d0%b3-lexus-es-v-35$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80%d0%bd%d0%b0%d1%8f-%d0%ba%d0%b0%d1%82%d0%b5%d0%b3%d0%be%d1%80%d0%b8%d1$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80%d0%bd%d0%b0%d1%8f-%d0%ba%d0%b0%d1%82%d0%b5%d0%b3%d0%be%d1%80%d0%b8%d1$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80%d0%bd%d0%b0%d1%8f-%d0%ba%d0%b0%d1%82%d0%b5%d0%b3%d0%be%d1%80%d0%b8%d1$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80%d0%bd%d0%b0%d1%8f-%d0%ba%d0%b0%d1%82%d0%b5%d0%b3%d0%be%d1%80%d0%b8%d1$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80%d0%bd%d0%b0%d1%8f-%d0%ba%d0%b0%d1%82%d0%b5%d0%b3%d0%be%d1%80%d0%b8%d1$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80%d0%bd%d0%b0%d1%8f-%d0%ba%d0%b0%d1%82%d0%b5%d0%b3%d0%be%d1%80%d0%b8%d1$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80%d0%bd%d0%b0%d1%8f-%d0%ba%d0%b0%d1%82%d0%b5%d0%b3%d0%be%d1%80%d0%b8%d1$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80%d0%bd%d0%b0%d1%8f-%d0%ba%d0%b0%d1%82%d0%b5%d0%b3%d0%be%d1%80%d0%b8%d1$
{HEX}php.base64.v23au.183 : ./public_html/wp-content/cache/supercache/stt-chiptuning.com/%d1%82%d0%be%d0%b2%d0%b0%d1%80%d0%bd%d0%b0%d1%8f-%d0%ba%d0%b0%d1%82%d0%b5%d0%b3%d0%be%d1%80%d0%b8%d1$
{HEX}php.base64.v23au.183 : ./public_html/vimax.md/wp-content/plugins/tablepress/i18n/datatables/config.php
===============================================

Вопрос: Можно спасти этот бэкап, или нужно сайт делать с нуля?
Ответ:

Сай может взламываться через уязвимые компоненты.

Вопрос: Вы думаете его умышленно завалили? Или это просто случайность может быть!? Просто столько времени работал и всё было нормально...
Ответ:

почему умышленно. где вы брали компоненты? все ваши компоненты с официального сайта? а для остальных вот

http://blog.fox-it.com/2014/11/26/cryptophp-a-week-later-more-than-23-000-sites-affected/


<< Назад