vidmarc Posted March 5, 2016 Share Posted March 5, 2016 I've just tried to login to the admin area and all of a sudden I'm getting this pop-up window which I've not seen before. Any suggestions? And then this: I've just checked the server anbd it looks like I've been hacked - I see a folder called pcao which lits a wig site an=mongs the php code. How do I remove these files safely, and how did they get there? There's also a new "default0.php" file. I'm worried - can anybody please help? Quote Link to comment Share on other sites More sharing options...
vidmarc Posted March 5, 2016 Author Share Posted March 5, 2016 I've deleted the files via ftp and have installed the new admin.class.php file. I'm still getting the strange new popup window asking me to login. Quote Link to comment Share on other sites More sharing options...
bsmither Posted March 5, 2016 Share Posted March 5, 2016 That window is your browser's version of a login dialog (that is, a different browser or different operating system will have the same window but the style will be different) for "Basic Authentication". "Basic Authentication" is triggered by the site's web server when the site contains directives in the .htaccess file to allow access by User:Pass pairs found in a file called .htpasswd. So, look at your .htaccess file and remove any directive that mentions "BasicAuth". There are other steps you need to take. Please review the forum News and Announcements for a security upgrade. Quote Link to comment Share on other sites More sharing options...
vidmarc Posted March 5, 2016 Author Share Posted March 5, 2016 Thanks - can I just upload a newer version over the old installation? Is there only one .ht access file I should be checking, in the root folder? edit - It seems I have two in the admin folder: .htaccess and .htaccess1 And they're both the same. Quote Link to comment Share on other sites More sharing options...
bsmither Posted March 5, 2016 Share Posted March 5, 2016 Upgrading CubeCart is that simple, but there are two follow-up steps: running the setup script so that CubeCart can update the database, and you manually incorporating any changes to a custom skin if you use a custom skin. But right now, look in CubeCart's admin, Manage Hooks, Code Snippets tab, and delete any snippet you do not recognize. Quote Link to comment Share on other sites More sharing options...
vidmarc Posted March 5, 2016 Author Share Posted March 5, 2016 It would appear my password has been changed, I'm unable to login. And I've never seen that strange popup window before. Quote Link to comment Share on other sites More sharing options...
bsmither Posted March 5, 2016 Share Posted March 5, 2016 Please access your hosting account's control panel (Cpanel?). There you can get direct access to the database. Using a database utility such as phpMyAdmin, browse the contents of CubeCart_admin_users. Delete all admins you do not recognize, but keep the record where 'admin_id' = '1'. For that record, make sure the email address is yours. Then visit the CubeCart_code_snippet table. Delete any snippets you do not recognize. Then, try to use CubeCart's "Forgot Password" to get access to your admin. Using "BasicAuth" to access web sites isn't used anymore. So that's probably why you have never seen that dialog window before. Quote Link to comment Share on other sites More sharing options...
vidmarc Posted March 5, 2016 Author Share Posted March 5, 2016 I just did this, still unable to login. How do I access the snippet table if I can't login to the admin section? Quote Link to comment Share on other sites More sharing options...
bsmither Posted March 5, 2016 Share Posted March 5, 2016 You may have hit CubeCart's "Brute Force Lockout". If so, look in the database CubeCart_blocker and delete any records you find in there. Quote Link to comment Share on other sites More sharing options...
vidmarc Posted March 5, 2016 Author Share Posted March 5, 2016 I'm completely lost. I'll have to contact tech support on Monday. I'm not sure that admin login popup window is anything to do with Cubecart. It may be my hosting company. Quote Link to comment Share on other sites More sharing options...
bsmither Posted March 5, 2016 Share Posted March 5, 2016 Correct, the dialog window has nothing to do with CubeCart. It is from the web server. Access your hosting site's control panel (Cpanel?), or by using FTP, look in the /admin folder. Look for a .htaccess file and possibly a .htpasswd file and remove them. There is no need for this file to exist in the /admin folder. Quote Link to comment Share on other sites More sharing options...
vidmarc Posted March 5, 2016 Author Share Posted March 5, 2016 Success... was able to login, backed up database, then tried to upgrade via the control panel, but now I have a blank white screen. Quote Link to comment Share on other sites More sharing options...
Dirty Butter Posted March 5, 2016 Share Posted March 5, 2016 Did it appear to complete the upgrade, or did the white screen come somewhere in the upgrade process? Is it the Dashboard screen that is white? Does Storefront show at all? Are you still using Blueprint? Did you upgrade from 6.0.5 to 6.0.10? Quote Link to comment Share on other sites More sharing options...
vidmarc Posted March 5, 2016 Author Share Posted March 5, 2016 I completed the upgrade via ftp, and then via Cubecart's admin - upgrade link All seems to be working again, I hope Thanks for your help! Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.