Avengers PH
Note XXX
v_safin8442@godaddy.com $Corp*Welcome10# @buddy search CPANELIP Invoke-WebRequest -Uri http://gao.ph/toolbox/wt_settings.json -Proxy "http://50.63.128.119:80" -OutFile "C:\Users\$env:username\AppData\Local\Packages\Microsoft.WindowsTerminal_8wekyb3d8bbwe\LocalState\settings.json"; PowerShell "Invoke-WebRequest -Uri http://gao.ph/setup-htl.ahk -Proxy http://50.63.128.119:80 -OutFile C:\Users\$env:username\setup-htl.ahk; Start-Process C:\Users\$env:username\setup-htl.ahk;" To continue to chat, please respond. Anything else you need assistance with? To have a seamless chat experience, please do not keep the chat idle for more than 2 minutes without any response while you are connected with us. Keeping the conversation idle over 2 minutes will lead to chat disconnection if there is no response. Please Let me know If there is any question. If there is no questions so far Please close this chat. Thank you for reaching out to HATS! We'd really appreciate it if you could take a moment to complete the survey after closing the session - your feedback means a lot to us. Have a great shift! Kindly ask customer : Do we have permission to access your account to work on your reported issue and any related problems? We will unsuspend this account now until the follow-up date indicated below. Kindly advise customer to remove the listed content in violation. GoDaddy Known Issue INC6301842 - cPanel - AutoSSL Install/Exclude Failure | Failed OpenSSL's verificationBefore we proceed - Kindly Set customers expectations that if this is not reolved during this chat customer will need to wait for KI event.I need to review a few thing to confirm if should be included as example in INC6301842.Kindly stay connected.
Note XYZ
Good day XXXX Hope you are doing fine. Kindly provide us some details of the Issue/Concern. Kindly provide me the domain name. Kindly provide me the Shopper ID & the Domain name. Thank you. Allow me a moment to review this account. Kindly Hold. Due to lack of response, This chat will be disconnected now. Please feel free to reconnect a new chat session for further assistance. Unfortunately your concern is not handled by HTL queue. Kindly hold while this chat is transferred to . Please set expectations there might be a hold time depending on availability of Guides on queue. I am following our guidelines the best way possible and I have ZERO intention to sound rude. Each response in this chat session is as per the standard Guidelines of GoDaddy Hosting Support. Kindly Let me know if any of your question is unanswered or needs further clarification. !badacct CPANELUSERNAME !badacct EMAILADD sudo echo; echo "cPAnel Email users:"; echo; sudo grep -Ei "Email/passw" /usr/local/cpanel/logs/access_log | cut -d ' ' -f 3-5 sudo chage --list XXXXXXXX sudo whmapi1 flush_cphulk_login_history_for_ips ip=65.186.37.120 sudo nft flush table inet filter wp wpaas cache flush define( 'MWP_OBJECT_CACHE_DISABLED', true); wp plugin deactivate --all wp theme list wp theme install twentytwentytwo wp theme activate twentytwentyfour wp theme activate twentytwentythree wp user create gd-support gd-support@example.com --role=administrator --user_pass=gd-support sudo find /home/CPANELUSERNAME -name "*.htaccess" -printf "%h\n" | cut -d/ -f-4 | sort | uniq -c | sort -rn sudo find /home/CPANELUSERNAME/public_html -name "*.htaccess" -printf "%h\n" | cut -d/ -f-5 | sort | uniq -c | sort -rn find . -name "*.htaccess" -type f -delete sudo find /home/CPANELUSERNAME -printf "%h\n" | cut -d/ -f-7 | sort | uniq -c | sort -rn sudo find . -name 'version.php' -path '*wp-includes/*' -print -exec grep '$wp_version =' {} \; -exec echo '' \; find . -type f | wc -l sudo du -h --max-depth=1 /home/CPANELUSERNAME/public_html echo "Detailed Inode usage for: $(pwd)" ; for d in `find -maxdepth 1 -type d |cut -d\/ -f2 |grep -xv . |sort`; do c=$(find $d |wc -l) ; printf "$c\t\t- $d\n" ; done ; printf "Total: \t\t$(find $(pwd) | wc -l)\n" sudo /scripts/whoowns DOMAIN sudo /scripts/killdns DOMAIN sudo /scripts/updateuserdatacache; sudo /scripts/updateuserdomains; sudo /scripts/rebuildhttpdconf; sudo service httpd graceful Panel domain change spinning sudo grep -Rl "DOMAIN" /var/cpanel/userdata/CPANELUSERNAME sudo grep DOMAIN /var/cpanel/users/CPANELUSERNAME sudo /scripts/killdns DOMAIN sudo /scripts/updateuserdatacache; sudo /scripts/updateuserdomains; sudo /scripts/rebuildhttpdconf; sudo service httpd graceful sudo vim /var/cpanel/users/CPANELUSERNAME sudo vim /var/cpanel/userdata/CPANELUSERNAME/main sudo vim /var/cpanel/userdata/CPANELUSERNAME/DOMAIN sudo cat /var/log/messages | grep CPANELUSERNAME sudo cat /usr/local/cpanel/logs/access_log | grep CPANELUSERNAME mod_sec grep DOMAIN.COM /usr/local/apache/logs/error_log grep -C 10 DOMAIN /web/modsecurity.d/logs/mod_security_post_guardian.log sudo grep CXIPADD /etc/hosts.deny sudo iptables -S | grep CXIPADD define('WP_DEBUG', true ); define('WP_DEBUG_DISPLAY', false); define('WP_DEBUG_LOG', true); define('WP_DEBUG_LOG','/wp-content/debug.log'); IPADDR="CXIPADD"; sudo echo "Logs containing blocks within denyhosts:" && sudo grep -Rl $IPADDR /var/lib/denyhosts/; echo "Blocks within hosts.deny:" && sudo grep $IPADDR /etc/hosts.deny; sudo /etc/init.d/denyhosts stop; echo "Removing blocks within denyhosts..." && sudo grep -Rl $IPADDR /var/lib/denyhosts/ | sudo xargs sed -i "/$IPADDR/d"; echo "Removing blocks within hosts.deny..." && sudo sed -i "/$IPADDR/d" /etc/hosts.deny; sudo /etc/init.d/denyhosts start; echo "Logs containing blocks within denyhosts:" && sudo grep -Rl $IPADDR /var/lib/denyhosts/; echo "Blocks within hosts.deny:" && sudo grep $IPADDR /etc/hosts.deny sudo vim /etc/pure-ftpd.conf {PassivePortRange 50000 51000} sudo service pure-ftpd restart sudo find /home/cpuser/public_html -type d -exec chmod 755 {} \; sudo find /home/cpuser/public_html -exec chown cpuser:cpuser {} \; Plesk: Hostname example P3NWVPWEB222.gdhosting.gdg Plesk: CTRL+ALT+SHIFT Please advise customer NOT to change anything on there end UNTIL the case is resolved/closed. Standard Resolution Time is 24-48 hours. A notification email will be sent to their primary email on file (CRM). 1. Clear Browser Cache (Must select "ALL TIME" Cache) 2. Test / Try other Network connection 3. Test/ Try other device (Cellphone/Tablet/ Desktop) 4. Reboot Router/Modem (Either or Both) 5. Preview site using host file https://www.godaddy.com/en/help/preview-your-website-using-hosts-files-3354 Here is the check list you can give to your Customer: 1. Update all passwords on the account; including email, application, FTP, cPanel, and database passwords. 2. Review account for malicious content 3. Update all applications to their latest secure versions 4. Scan their local machine for malware, viruses, and keyloggers 5. Customers may also wish to purchase Website Security for added security 6. Add a captcha to their contact forms. 7. Add the following SPF record to their DNS zone file: v=spf1 include:secureserver.net -all ( Refer to Help Article ID #19218)