Gadgetbubba Posted August 20, 2014 Share Posted August 20, 2014 Ran into a problem today that I noticed random numbers sometimes 3 and 4 digit numbers (Possibly HEX) started popping up on the store pages. Everything is secure on the install... just can't figure out what is going on. Here is a link to the store... just look around and you'll see what I am talking about. Any help or advice would be great. http://www.absfixer.com/catalog/ Thanks, Brandon Link to comment Share on other sites More sharing options...
Mort-lemur Posted August 20, 2014 Share Posted August 20, 2014 @@Gadgetbubba Nothing showing up when I browse your store Now running on a fully modded, Mobile Friendly 2.3.4 Store with the Excellent MTS installed - See my profile for the mods installed ..... So much thanks for all the help given along the way by forum members. Link to comment Share on other sites More sharing options...
Gadgetbubba Posted August 20, 2014 Author Share Posted August 20, 2014 Update - I found in the includes/Application_bottom.php if (STORE_PAGE_PARSE_TIME == 'true') { if (!is_object($logger)) $logger = new logger; echo $logger->timer_stop(DISPLAY_PAGE_PARSE_TIME); } I commented this out and everything is back to normal.... What is this and where is the STORE_PAGE_PARSE_TIME? Brandon Link to comment Share on other sites More sharing options...
oscMarket Posted August 20, 2014 Share Posted August 20, 2014 that is a setting in your admin. You not need to quote it out in the file. Just disable it in the admin settings. But it seems you have another problem as it not show the parsed time (in seconds/milliseconds). Link to comment Share on other sites More sharing options...
d-woo Posted September 15, 2014 Share Posted September 15, 2014 I had this same problem. Here is how I resolved it. My site had been hacked because I usually have my public_html/images file chmod as 755. I accidentally left it in the 777 mode after uploading new files (I had forgot to set it back to 755). My images file got hacked. It messed up my website as well as my admin. I discovered the hack was done on Sept 10, 2014. I found files in my images folder (rbc.zip and clicks.zip). Database restoration to earlier dates did not help. Therefore I knew that it was not mySQL related (configuration table, etc) Solution: Via FTP 1. I removed and restored my entire root/admin folder 2. I removed and restore my entire root/includes folder. Voila! Link to comment Share on other sites More sharing options...
d-woo Posted September 15, 2014 Share Posted September 15, 2014 Additionally, if you have root access to your server you should not only chmod your root/images folder 755 but also lock your site from anyone being able to alter your files. via SSH (e.g. Putty) run the following: To lock: chattr +i -R <path to your root folder> To unlock (so that you can later upload files: To lock: To lock: chattr -i -R <path to your root folder> Link to comment Share on other sites More sharing options...
d-woo Posted October 15, 2014 Share Posted October 15, 2014 These random hex numbers continued appearing even after the above solutions. I notice that when I was on https: this didn't occur. So I changed my catalog and admin includes/configure.php files to use https for both the server and ssl server. Also on my catalog/index.php page I added the following PHP code at the top to force the use of SSL: //force redirect to secure page as of 2014-10-14 if($_SERVER['SERVER_PORT'] != '443') { header('Location: https://'.$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']); exit(); } Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.