MironJ
- Total activity 19
- Last activity
- Member since
- Following 0 users
- Followed by 0 users
- Votes 0
- Subscriptions 5
Comments
Recent activity by MironJ-
Hi Michael, Here is: cPanel tickets ID# 8151245 Thank you
-
Hello, Please let us know the version of cPanel installed on systems where Mail SNI isn't working: cat /usr/local/cpanel/version Thank you. 11.60.0.35 on every server
-
Hi, same issue is happening to me on several servers where server hostname SSL cert was updated and after that SNI does not work for client domains anymore, even I have enabled SNI for mail.
-
Just force CageFS update with the new installed files (#cagefsctl --force-update), eventually restart httpd (#/scripts/restartsrv_httpd) and that's all, no need for disabling user from the CageFS :)
-
Definitely, I found infected files under plugins too (/wp-content/plugins/libravatar-replace/). Search for "jcache" file or files with "/usr/bin/perl" or "urldecode" content: find . -type f -exe...
-
Excellent, I'm glad to see you found it ;) And immediately update WP, all plugins and themes to the latest available versions and be sure to change WP admin password. Please update this thread if...
-
Well, probably variable names are not the same in the every case. But for beginning check all "404.php" and "functions.php" files, under every installed theme. php code added into theme "functions...
-
Ok, I found it. It's theme "404.php" file with inserted code like this: shortened with dots (.....): [Removed]
-
Update, POST requests that activated this "jcache" processes: 198.71.227.54 - - [12/Jul/2016:05:09:34 +0200] "POST /1.php HTTP/1.1" 200 78088 "-" "Mozilla/5.0 (Windows NT 6.0; rv:16.0) Gecko/2013...
-
Hello, Looks like some WP exploit. We have same issue on one user account with WP installed. It's an old installation, but client does not know anything about jcache or something similar. Looking...