Page 3 of 3 FirstFirst 123
Results 21 to 28 of 28
  1. #21
    Join Date
    Jan 2007
    Location
    Australia
    Posts
    4,905
    Plugin Contributions
    3

    Default Re: HELP.. killed my phpmyadmin when trying to reset password.. now nothing works

    Quote Originally Posted by thecounsil View Post
    Is there anyway to use the backup files I have to restore the store front..
    Err, well yes. That is the entire point of making backups.

    Quote Originally Posted by thecounsil View Post
    and by backup I mean everything that is not related to the SQL
    And by backups, we generally mean everything that could possibly get corrupted, lost, modified or destroyed, *including* the SQL database.

    Quote Originally Posted by thecounsil View Post
    that you can only access through the host, or that I think is what you can only access through their website.
    There are a number of ways to backup SQL data, the most used (and recommended) method being via phpmyadmin, but cPanel also has its own tools that allow you to do this.
    I'm somewhat confused about your terminology though ("what you can only access through their website"), because how else does one make *any* backup if not through the site that the files or data is being hosted on?

    Quote Originally Posted by thecounsil View Post
    Now to get my blog back, which is more important to me right now than the store but both need to be up and running.
    I seem to recall that you were using WordPress for your blog? Has this been left as long between updates as your ZenCart installation was? If so, you've got double the problems. Wordpress is more notorious for being hacked than zencart, so this will also need to be checked for hackers files, upgraded, and restored from backups. Oh, and guess what, Wordpress also makes extensive use of SQL, much like zencart does, so if you don't have a backup of the ZenCart database I have to assume you don't have a backup of your WP database either.

    That's the bad news.... I can however provide you with a little hope that all is not lost (perhaps). While is is quite possible that your host doesn't keep a backup of their users /home/ files (I shall refrain from saying what I think about such host), they *should* have a a *series* of regular backups of all of the SQL databases. I won't go into details, but the odds are extremely high (99.99%) that their entire server(s) are dependent on these in one way or another, which means if they don't back these up they are screwing themselves over big time, and *when* one of the drives fail (not *if*) they'll never be able to recover their own systems.. such a failure will probably put them out of business. I hope no host is *that* stupidly unprofessional.

    Anyway, assuming they do have these backups, they could restore your database(s) to sometime before the hack. They are under no obligation to do this for you though, so you can expect to pay... It could take them considerable time to locate, extract, and restore the files specific to you .. in fact it could take them a lot longer to do this whan it could to restore their *entire* system (which they won't do for a single user, because such backups will affect *all* of their users, and themselves.

    Nonetheless, this is a possibilty for you.

    As for the backup of your *files* (the stuff in your home directory), which is most of what your 'store front' consists of, these are not essential for their servers operation, so as stated, they may not even have these backed up, and if you don't either, then this makes your question a moot point, and you have no option than to start afresh.

    Now for more bad news..... A programs files, and the SQL database they use are intrinsically linked, and should never ever be backup up (or restored) separately. Attempting to do so is just asking for problems. You'll end up finding some parts of the system may work, while other parts fail miserably. This is going to be true for both your zencart system and your wordpress system.

    Now a little more good news. *We* have no way of knowing exactly what files (or database) have been modified (or accidentally corrupted). It is possible that only one or two relatively minor things have actually been affected, and a *skilled* professional could take a look at things, identify these minor issues (even though the consequences may be major) and actually *fix* them for you and you'll have lost nothing. IT IS NOT POSSIBLE TO DO THIS WITHOUT ACCESS TO YOU SITE though, so asking questions about it is simply wasting *everyones* time.

    This same professional may end up spending several hours trying to recover for you, before coming to the conclusion that recovery simply isn't possible, which is going to leave you with a large bill with nothing really productive in return (from your perspective). So this is a bit of a gamble.

    My gut feeling is telling me that even if you had good/current backups of everything *you* will still have troubles trying to restore things yourself, so on this basis, I'd be inclined to suggest you seek some kind of expert help for a preliminary inspection of your site to get some idea how much (or how little) damage has actually been done.
    (Don't ask your host, this isn't their area of expertise).

    Having said that, you may choose to decide that your store and blog isn't quite as valuable as you think it is, and on this basis, cut your losses, treat this entire thing as a bad experience (which you will hopefully learn from), and start afresh using the latest version of the software that you are using, because no matter what, even if recovery is possible you will *still* need to upgrade it all in order to prevent further hacks.

    I seriously and honestly beleive that this thread now be closed, because as much as we'd like, there isn't anything more that anyone can *say* to help you.

    Your options are seek professional help (with your site), or start afresh.

    Cheers
    Rod

  2. #22
    Join Date
    Nov 2009
    Location
    UK
    Posts
    1,151
    Plugin Contributions
    0

    Default Re: HELP.. killed my phpmyadmin when trying to reset password.. now nothing works

    Quote Originally Posted by thecounsil View Post
    So you believe I was hacked. Okay I can deal with that.

    Is there anyway to use the backup files I have to restore the store front.. and by backup I mean everything that is not related to the SQL that you can only access through the host, or that I think is what you can only access through their website.

    Now to get my blog back, which is more important to me right now than the store but both need to be up and running.

    Thanks,
    carol
    There is no reason to assume you have been hacked - Just because you didnt get your email and password email could simply be an email issue - You said you received the Paypal payment email - if you had been 'hacked' as suggested on here you'd expect they would try and send payments to their own Paypal account, but obviously they havent, so its a pretty lame 'hack'.

    So basically, you forgot your login/password, so went manually into phpmyadmin, but also forgot the database user/name password too, so made a new one.

    So as Im reckoning, you have deleted/removed the original database user/password that controls the database, ie the same database login details in the Zencart includes/configure.php files.

    Because youve replaced that user with a new one, the Zencart files can no longer connect with the database.

    You probably find your blog also stopped working as they may have used the same database username/password.

    So go into your includes/configure.php file, and change the database user and password in that file to the same as the new user/password you made in phpmyadmin.

  3. #23
    Join Date
    Apr 2012
    Location
    PA, USA
    Posts
    12
    Plugin Contributions
    0

    Default Re: HELP.. killed my phpmyadmin when trying to reset password.. now nothing works

    Okay.. options..

    restart from scratch...
    try to use backups...

    or

    find configure.php file(s) and make sure they have the correct information..

    okay.. where are the configure file(s) I need to find?

    thanks!
    carol

  4. #24
    Join Date
    Jan 2007
    Location
    Australia
    Posts
    4,905
    Plugin Contributions
    3

    Default Re: HELP.. killed my phpmyadmin when trying to reset password.. now nothing works

    Quote Originally Posted by dgent View Post
    There is no reason to assume you have been hacked
    This is/was NOT just an assumption. I came to this conclusion based on all the evidence presented. The key points being

    1. The issues started whilst the OP was running ZenCart V1.3.8, known to be *actively* exploited
    2. The normal process of resetting the password didn't fix the 'forgotten password' issue, (and seriously, how often does a store admin 'forget' a password that they had apparently been using for several years?)
    3. The issues go deeper than just ZenCart. There are problems with the Wordpress Blog that started at the same time (?)

    If only one, possibly even two of these issues were reported I'd be inclined to think differently. But all three things put together, seems a bit too suspicious to me.

    I am NOT one of those people that scream 'hack' at every little problem. In fact I only tend to suggest this as a possiblity when pretty much all other alternatives have been eliminated.

    Quote Originally Posted by dgent View Post
    if you had been 'hacked' as suggested on here you'd expect they would try and send payments to their own Paypal account, but obviously they havent, so its a pretty lame 'hack'
    How do you know the hacker didn't 'try' but didn't succeed? And yes, there are a LOT of lame hackers around. Fact is, most zencart hacks that I've seen *have* been lame, to the extent that the kiddies run the prewritten scripts, which gives them access to the SQL database, and from thier there don't have a clue what to do next.
    With no ability to make their 'hack' productive (by redirecting paypal payments) they are often content to just mess with the admin password.
    Other evidence of such hacks can usually be found in way of php files being found in the /images/ folder (not that these 'hackers' have any idea how they managed to put them there, and often, with less of a clue how to remove them).

    Quote Originally Posted by dgent View Post
    So as Im reckoning, you have deleted/removed the original database user/password that controls the database, ie the same database login details in the Zencart includes/configure.php files.
    Because youve replaced that user with a new one, the Zencart files can no longer connect with the database.
    You probably find your blog also stopped working as they may have used the same database username/password.
    Now, having 'defended' my logical conclusion (not an assumption), I must also agree that yours is also quite a possible, even good explanation of the *current* scenario, so until/unless a hack is proven or disproven, I think a key factor is was the original password *really* forgotten, or had it been changed, making the OP think that they must have forgotten it?

    And finally, here comes my 'trump card'..... Regardlesss of whether this situation was a result of a hack or a forgotten password, the OP has now done so many things 'wrong' (changing passwords here and there, attempting a zencart upgrade (assumedly new files were uploaded) who knows what else, that they have, for all intents and purposes hacked their own site in ways that neither a script kiddy, or a 'real' hacker ever would (or could).

    As such, in MY opinion, the only sensible way to recover is to treat it as though it were a hack, and a very nasty one at that.

    If it helps the OP to recover I'll be happy to eat humble pie if your latest suggestion works, but are you sure that this isn't going to cause even more problems? (OTOH, there not a lot more to lose by trying I suppose). If I were the 'professional' called in to look at the site I'd certainly be testing/checking these details *before* actually making any changes to them (as I would hope others would too).

    On that note, I'll once again end this post the same way as my last one...
    I seriously and honestly beleive that this thread now be closed, because as much as we'd like, there isn't anything more that anyone can *say* to help you.
    Your options are seek professional help (with your site), or start afresh.

    Cheers
    Rod

  5. #25
    Join Date
    Nov 2009
    Location
    UK
    Posts
    1,151
    Plugin Contributions
    0

    Default Re: HELP.. killed my phpmyadmin when trying to reset password.. now nothing works

    If you slow down with the writing and actually read, you'll see there was nothing wrong with her site until she reset her phpadmin password, both Zencart and the blog were working.

    'The normal process of resetting the password didn't fix the 'forgotten password' issue,'

    That process is the same process that sends you an order confirmation email. So what we're looking at initially is simply an email not received issue, to start with.

    And you'll notice the lack of surprise in her comment 'I forgot my password'. Her comments make out she never logs into her admin, and her 'I forgot my password to my cpanel too'.

    There are the facts, everything else is assumption.

    I think the main fact is you're confusing the crap out of her

  6. #26
    Join Date
    Jan 2007
    Location
    Australia
    Posts
    4,905
    Plugin Contributions
    3

    Default Re: HELP.. killed my phpmyadmin when trying to reset password.. now nothing works

    Quote Originally Posted by dgent View Post
    If you slow down with the writing and actually read, you'll see there was nothing wrong with her site until she reset her phpadmin password, both Zencart and the blog were working.
    Not sure why I'm bothering.

    From the 1st post.
    "Well I got a sale on it the other day and payment came through fine (PayPal) but never got email regarding it. So I went to login on admin and forgot password. Clicked on resend button and nothing came through email. Searched Zen Cart website tried to follow the phpmyadmin directions and messed something up.
    Now the public site is not working and the admin login screen is not work and my blog is not working either."

    At THIS point this isn't any indication or suggestion that the *database* user/password was changed. The zencart directions to reset the password refers to the Zencart admin user only. Have you seen these directions? It would be near impossible to mess up whilst following them and end up changing the database user details instead. On this basis, and assuming (yes, I also make asumptions, as well as logical deductions) there was already something more amiss with the site than first reported, because no matter how the zencart admin details were messed up it wouldn't/could possibly have had an effect on the blog. IOW, there are still more peices missing to this puzzle.

    If one of these peices is that the OP did mess up the DB details then that would have been because there was a lot more done than just following the password reset instructions... since then there has been the attempted upgrade, and soon to be even more changes, this time with the configure files <sigh>

    Quote Originally Posted by dgent View Post
    I think the main fact is you're confusing the crap out of her
    And your additional input isn't doing a great deal to alleviate this. What I'm *actually* trying to do is prevent the OP from doing anything more that could dig her into an even deeper hole. You have now managed to really mess up that plan, so on that note, I wish both you and Carol adios and good luck. You're going to need it.



    • Cheers
      Rod (1.30am - off to bed. I can't wait to see what transpires next)


  7. #27
    Join Date
    Nov 2009
    Location
    UK
    Posts
    1,151
    Plugin Contributions
    0

    Default Re: HELP.. killed my phpmyadmin when trying to reset password.. now nothing works

    Quote Originally Posted by RodG View Post
    Not sure why I'm bothering.

    From the 1st post.
    "Well I got a sale on it the other day and payment came through fine (PayPal) but never got email regarding it. So I went to login on admin and forgot password. Clicked on resend button and nothing came through email. Searched Zen Cart website tried to follow the phpmyadmin directions and messed something up.
    Now the public site is not working and the admin login screen is not work and my blog is not working either."

    At THIS point this isn't any indication or suggestion that the *database* user/password was changed. The zencart directions to reset the password refers to the Zencart admin user only. Have you seen these directions? It would be near impossible to mess up whilst following them and end up changing the database user details instead. On this basis, and assuming (yes, I also make asumptions, as well as logical deductions) there was already something more amiss with the site than first reported, because no matter how the zencart admin details were messed up it wouldn't/could possibly have had an effect on the blog. IOW, there are still more peices missing to this puzzle.

    If one of these peices is that the OP did mess up the DB details then that would have been because there was a lot more done than just following the password reset instructions... since then there has been the attempted upgrade, and soon to be even more changes, this time with the configure files <sigh>



    And your additional input isn't doing a great deal to alleviate this. What I'm *actually* trying to do is prevent the OP from doing anything more that could dig her into an even deeper hole. You have now managed to really mess up that plan, so on that note, I wish both you and Carol adios and good luck. You're going to need it.



    • Cheers
      Rod (1.30am - off to bed. I can't wait to see what transpires next)

    Her PM to me after my post saying 'yes, thats exactly what I did' is the answer Rod...

    'What I'm *actually* trying to do is prevent the OP from doing anything more that could dig her into an even deeper hole'

    Apart from suggest to her she should seek professional help and 'any further input on this thread is *wasting* everyones time'

    Yeah, real helpful.

  8. #28
    Join Date
    Apr 2012
    Location
    PA, USA
    Posts
    12
    Plugin Contributions
    0

    Default Re: HELP.. killed my phpmyadmin when trying to reset password.. now nothing works

    Thank you all for your help!!!

    dgent, you are a LIFESAVER!!! Wish I could bring you some.. :)

    THANK YOU THANK YOU THANK YOU!!!

    Site is up and running again, so is the blog. I'm gonna leave it alone for today. Run some more back-ups on my end and through SQL. PW protect a few areas.. and then and only then run some updates.. because I know it's long over due for that.. but if one only gets a couple sales a year and always gets the right amount of emails.. AND not to mention twin 5 yr olds.. you don't think of such things..

    Anywho, I can't thank you enough dgent!!!

    :)
    carol

 

 
Page 3 of 3 FirstFirst 123

Similar Threads

  1. Unable to reset the passworst through PhpMyadmin
    By raulmalik in forum Installing on a Linux/Unix Server
    Replies: 5
    Last Post: 28 Dec 2011, 04:37 AM
  2. Unable to reset admin password in phpmyadmin…
    By eranariel in forum General Questions
    Replies: 7
    Last Post: 1 May 2011, 01:11 PM
  3. HELP!!! Starting upgrade killed my phpmyadmin access
    By OrcaSoul in forum Installing on a Windows Server
    Replies: 1
    Last Post: 2 Feb 2011, 05:22 AM
  4. Changing password in phpMyAdmin ?
    By mrcastle in forum General Questions
    Replies: 5
    Last Post: 20 Apr 2010, 12:26 PM
  5. Password not showing in Customer Password Reset Email
    By izuno in forum General Questions
    Replies: 2
    Last Post: 7 Oct 2008, 04:10 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •