stealthpaws Posted February 21, 2007 Share Posted February 21, 2007 I had to wipe my entire site just to ensure nothing was lurking. I uploaded my entire site, catalog included...all working, and now I can't even access my admin. The main site works, but the osCommerce gives me a "page not found" message trying to access the cart. Do I have to reinstall? As far as I know, the database remains intact as it does not reside in my root. I'd sure appreciate some help...I'm about ready to cry. Its a rather large database. heres the addy: www.saorsastudios.com Link to comment Share on other sites More sharing options...
stealthpaws Posted February 21, 2007 Author Share Posted February 21, 2007 can anyone help please? multiple uploads now, to the same server, same file system...everything identical w/database intact. It just won't show up. I am still getting a "page not found error" on anything having to do with osCommerce files. www.saorsastudios.com/catalog Link to comment Share on other sites More sharing options...
stealthpaws Posted February 21, 2007 Author Share Posted February 21, 2007 Ok, so I'm reading the configure files page by page. I have conflict between an older back up, and my current b/u (and live now) The catalog/admin/includes/configure.php matches exactly in the old back up and the current site files The catalog/admin/configure.php matches exactly in the old back up and the current site files The discrepency is here: THIS ONE IS THE CURRENT VERSION, BOTH IN MY CURRENT BACK UP AND ON MY SERVER: Catalog/includes/configure.php, and it appears here with my usernames/pwds x'd out: <?php /* $Id: configure.php,v 1.14 2003/07/09 01:15:48 hpdl Exp $ osCommerce, Open Source E-Commerce Solutions http://www.oscommerce.com Copyright © 2003 osCommerce Released under the GNU General Public License */ // Define the webserver and path parameters // * DIR_FS_* = Filesystem directories (local/physical) // * DIR_WS_* = Webserver directories (virtual/URL) define('HTTP_SERVER', 'http://www.saorsastudios.com/catalog'); // eg, http://localhost - should not be empty for productive servers define('HTTPS_SERVER', 'https://www.saorsastudios.com/catalog'); // eg, https://localhost - should not be empty for productive servers define('ENABLE_SSL', 'true'); // secure webserver for checkout procedure? define('HTTP_COOKIE_DOMAIN', 'www.saorsastudios.com'); define('HTTPS_COOKIE_DOMAIN', 'www.saorsastudios.com'); define('HTTP_COOKIE_PATH', '/'); define('HTTPS_COOKIE_PATH', '/'); define('DIR_WS_HTTP_CATALOG', '/'); define('DIR_WS_HTTPS_CATALOG', '/'); define('DIR_WS_IMAGES', 'images/'); define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/'); define('DIR_WS_INCLUDES', 'includes/'); define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/'); define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/'); define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/'); define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/'); define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/'); define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/'); define('DIR_FS_CATALOG', dirname($HTTP_SERVER_VARS['SCRIPT_FILENAME']) . '/'); define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/'); define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/'); // define our database connection define('DB_SERVER', 'xx.x.x.x'); // eg, localhost - should not be empty for productive servers define('DB_SERVER_USERNAME', 'xxxxxxx'); define('DB_SERVER_PASSWORD', 'xxxxxxx'); define('DB_DATABASE', 'xxxxxxx'); define('USE_PCONNECT', 'false'); // use persistent connections? define('STORE_SESSIONS', 'mysql'); // leave empty '' for default handler or set to 'mysql' THIS ONE IS THE OLD BACK-UP WHICH I HADN'T TOUCHED IN MONTHS, BUT WAS WORKING WHEN I BACKED IT UP. THE LINE IN RED IN THE ABOVE PAGE DOES NOT APPEAR IN THIS OLDER COPY. <?php /* osCommerce, Open Source E-Commerce Solutions http://www.oscommerce.com Copyright © 2003 osCommerce Released under the GNU General Public License */ // Define the webserver and path parameters // * DIR_FS_* = Filesystem directories (local/physical) // * DIR_WS_* = Webserver directories (virtual/URL) define('HTTP_SERVER', 'http://www.saorsastudios.com'); // eg, http://localhost - should not be empty for productive servers define('HTTPS_SERVER', 'https://www.saorsastudios.com'); // eg, https://localhost - should not be empty for productive servers define('ENABLE_SSL', true); // secure webserver for checkout procedure? define('HTTP_COOKIE_DOMAIN', 'www.saorsastudios.com'); define('HTTPS_COOKIE_DOMAIN', 'www.saorsastudios.com'); define('HTTP_COOKIE_PATH', '/catalog/'); define('HTTPS_COOKIE_PATH', '/catalog/'); define('DIR_WS_HTTP_CATALOG', '/catalog/'); define('DIR_WS_HTTPS_CATALOG', '/catalog/'); define('DIR_WS_IMAGES', 'images/'); define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/'); define('DIR_WS_INCLUDES', 'includes/'); define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/'); define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/'); define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/'); define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/'); define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/'); define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/'); define('DIR_FS_CATALOG', '/home/content/s/t/e/stealthpaw/html/catalog/'); define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/'); define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/'); // define our database connection define('DB_SERVER', 'xx.x.x.xx'); // eg, localhost - should not be empty for productive servers define('DB_SERVER_USERNAME', 'xxxxx'); define('DB_SERVER_PASSWORD', 'xxxxxx'); define('DB_DATABASE', 'xxxxxx'); define('USE_PCONNECT', 'false'); // use persistent connections? define('STORE_SESSIONS', 'mysql'); // leave empty '' for default handler or set to 'mysql' ?> THIS PAGE IS COPIED FROM MY CURRENT FILES: catalog/configure.php <?php /* osCommerce, Open Source E-Commerce Solutions http://www.oscommerce.com Copyright © 2003 osCommerce Released under the GNU General Public License */ // Define the webserver and path parameters // * DIR_FS_* = Filesystem directories (local/physical) // * DIR_WS_* = Webserver directories (virtual/URL) define('HTTP_SERVER', 'http://www.saorsastudios.com'); // eg, http://localhost - should not be empty for productive servers define('HTTP_CATALOG_SERVER', 'http://www.saorsastudios.com'); define('HTTPS_CATALOG_SERVER', 'https://www.saorsastudios.com'); define('ENABLE_SSL_CATALOG', 'true'); // secure webserver for catalog module define('DIR_FS_DOCUMENT_ROOT', '/home/content/s/t/e/stealthpaw/html/catalog/'); // where the pages are located on the server define('DIR_WS_ADMIN', '/catalog/admin/'); // absolute path required define('DIR_FS_ADMIN', '/home/content/s/t/e/stealthpaw/html/catalog/admin/'); // absolute pate required define('DIR_WS_CATALOG', '/catalog/'); // absolute path required define('DIR_FS_CATALOG', '/home/content/s/t/e/stealthpaw/html/catalog/'); // absolute path required define('DIR_WS_IMAGES', 'images/'); define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/'); define('DIR_WS_CATALOG_IMAGES', DIR_WS_CATALOG . 'images/'); define('DIR_WS_INCLUDES', 'includes/'); define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/'); define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/'); define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/'); define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/'); define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/'); define('DIR_WS_CATALOG_LANGUAGES', DIR_WS_CATALOG . 'includes/languages/'); define('DIR_FS_CATALOG_LANGUAGES', DIR_FS_CATALOG . 'includes/languages/'); define('DIR_FS_CATALOG_IMAGES', DIR_FS_CATALOG . 'images/'); define('DIR_FS_CATALOG_MODULES', DIR_FS_CATALOG . 'includes/modules/'); define('DIR_FS_BACKUP', DIR_FS_ADMIN . 'backups/'); // define our database connection define('DB_SERVER', 'xx.x.x.xx'); // eg, localhost - should not be empty for productive servers define('DB_SERVER_USERNAME', 'xxxxxxxx'); define('DB_SERVER_PASSWORD', 'xxxxxxx'); define('DB_DATABASE', 'xxxxxxxx'); define('USE_PCONNECT', 'false'); // use persisstent connections? define('STORE_SESSIONS', 'mysql'); // leave empty '' for default handler or set to 'mysql' ?> I DO NOT HAVE A FILE CALLED CATALOG/CONFIGURE.PHP IN MY OLDER BACKUP FILE My understanding is that the configure.php files define the access for the program to operate. I am assuming that something here is out of place. Will someone look and tell me which one of these goes where? I have to assume that something here is wrong since the information is all correct, yet the pages do not show up in a browser from the server. Thank you in advance... Link to comment Share on other sites More sharing options...
stealthpaws Posted February 22, 2007 Author Share Posted February 22, 2007 and here is what my hosting co. just sent me. Our support staff has responded to your request, details of which are described below: Discussion Notes Support Staff Response Hello, Your site was compromised through the Oscommerce installation you have. Below is are some of the details for the compromise. 88.254.40.251 - - [21/Feb/2007:05:06:56 -0700] "GET www.saorsastudios.com/catalog/admin/newsletters.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb HTTP/1.1" 200 13347 "http://search.msn.com/results.aspx?q=inurl%3A%2Fadmin%2Fnewsletters.php%3F&first=111&FORM=PORE" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:06:58 -0700] "GET www.saorsastudios.com/catalog/admin/includes/stylesheet.css HTTP/1.1" 200 5645 "http://www.saorsastudios.com/catalog/admin/newsletters.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:07:00 -0700] "GET www.saorsastudios.com/catalog/admin/includes/general.js HTTP/1.1" 200 805 "http://www.saorsastudios.com/catalog/admin/newsletters.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:07:01 -0700] "GET www.saorsastudios.com/catalog/admin/images/header_checkout.gif HTTP/1.1" 200 2599 "http://www.saorsastudios.com/catalog/admin/newsletters.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:07:01 -0700] "GET www.saorsastudios.com/catalog/admin/images/header_support.gif HTTP/1.1" 200 1896 "http://www.saorsastudios.com/catalog/admin/newsletters.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:07:02 -0700] "GET www.saorsastudios.com/catalog/admin/images/oscommerce.gif HTTP/1.1" 200 3656 "http://www.saorsastudios.com/catalog/admin/newsletters.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:07:02 -0700] "GET www.saorsastudios.com/catalog/admin/images/header_administration.gif HTTP/1.1" 200 2612 "http://www.saorsastudios.com/catalog/admin/newsletters.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:07:03 -0700] "GET www.saorsastudios.com/catalog/admin/images/pixel_trans.gif HTTP/1.1" 200 43 "http://www.saorsastudios.com/catalog/admin/newsletters.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:07:03 -0700] "GET www.saorsastudios.com/catalog/admin/includes/languages/english/images/buttons/button_new_newsletter.gif HTTP/1.1" 200 579 "http://www.saorsastudios.com/catalog/admin/newsletters.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:07:06 -0700] "GET www.saorsastudios.com/catalog/admin/backup.php?selected_box=tools&osCAdminID=b26eec6b2bac788cb95c11610dad66bb HTTP/1.1" 200 12031 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:07:09 -0700] "GET www.saorsastudios.com/catalog/admin/images/icons/error.gif HTTP/1.1" 200 193 "http://www.saorsastudios.com/catalog/admin/backup.php?selected_box=tools&osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:07:20 -0700] "GET www.saorsastudios.com/catalog/admin/define_language.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb HTTP/1.1" 200 30083 "http://www.saorsastudios.com/catalog/admin/backup.php?selected_box=tools&osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:07:29 -0700] "GET www.saorsastudios.com/catalog/admin/includes/languages/english/images/buttons/button_file_manager.gif HTTP/1.1" 200 576 "http://www.saorsastudios.com/catalog/admin/define_language.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:07:51 -0700] "GET www.saorsastudios.com/catalog/admin/define_language.php?lngdir=english&filename=index.php&osCAdminID=b26eec6b2bac788cb95c11610dad66bb HTTP/1.1" 200 18171 "http://www.saorsastudios.com/catalog/admin/define_language.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:07:53 -0700] "GET www.saorsastudios.com/catalog/admin/includes/languages/english/images/buttons/button_save.gif HTTP/1.1" 200 433 "http://www.saorsastudios.com/catalog/admin/define_language.php?lngdir=english&filename=index.php&osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:07:53 -0700] "GET www.saorsastudios.com/catalog/admin/includes/languages/english/images/buttons/button_cancel.gif HTTP/1.1" 200 451 "http://www.saorsastudios.com/catalog/admin/define_language.php?lngdir=english&filename=index.php&osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:08:06 -0700] "POST www.saorsastudios.com/catalog/admin/define_language.php?lngdir=english&filename=index.php&action=save&osCAdminID=b26eec6b2bac788cb95c11610dad66bb HTTP/1.1" 302 5 "http://www.saorsastudios.com/catalog/admin/define_language.php?lngdir=english&filename=index.php&osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:08:14 -0700] "GET www.saorsastudios.com/catalog/admin/define_language.php?lngdir=english&osCAdminID=b26eec6b2bac788cb95c11610dad66bb HTTP/1.1" 200 30153 "http://www.saorsastudios.com/catalog/admin/define_language.php?lngdir=english&filename=index.php&osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:08:46 -0700] "GET www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb HTTP/1.1" 200 161837 "http://www.saorsastudios.com/catalog/admin/define_language.php?lngdir=english&osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:08:51 -0700] "GET www.saorsastudios.com/catalog/admin/images/icons/current_folder.gif HTTP/1.1" 200 132 "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:08:51 -0700] "GET www.saorsastudios.com/catalog/admin/images/icon_arrow_right.gif HTTP/1.1" 200 81 "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:08:52 -0700] "GET www.saorsastudios.com/catalog/admin/images/icons/folder.gif HTTP/1.1" 200 129 "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:08:53 -0700] "GET www.saorsastudios.com/catalog/admin/images/icon_info.gif HTTP/1.1" 200 540 "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:08:54 -0700] "GET www.saorsastudios.com/catalog/admin/images/icons/file_download.gif HTTP/1.1" 200 222 "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:08:55 -0700] "GET www.saorsastudios.com/catalog/admin/images/icons/delete.gif HTTP/1.1" 200 300 "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:08:55 -0700] "GET www.saorsastudios.com/catalog/admin/includes/languages/english/images/buttons/button_reset.gif HTTP/1.1" 200 438 "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:08:56 -0700] "GET www.saorsastudios.com/catalog/admin/includes/languages/english/images/buttons/button_upload.gif HTTP/1.1" 200 466 "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:08:56 -0700] "GET www.saorsastudios.com/catalog/admin/includes/languages/english/images/buttons/button_new_file.gif HTTP/1.1" 200 454 "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:08:57 -0700] "GET www.saorsastudios.com/catalog/admin/includes/languages/english/images/buttons/button_new_folder.gif HTTP/1.1" 200 559 "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:09:02 -0700] "GET www.saorsastudios.com/catalog/admin/file_manager.php?action=new_file&osCAdminID=b26eec6b2bac788cb95c11610dad66bb HTTP/1.1" 200 12562 "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:09:14 -0700] "POST www.saorsastudios.com/catalog/admin/file_manager.php?action=save&osCAdminID=b26eec6b2bac788cb95c11610dad66bb HTTP/1.1" 302 5 "http://www.saorsastudios.com/catalog/admin/file_manager.php?action=new_file&osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:09:39 -0700] "GET www.saorsastudios.com/catalog/admin/file_manager.php?info=index.html&osCAdminID=b26eec6b2bac788cb95c11610dad66bb HTTP/1.1" 200 161419 "http://www.saorsastudios.com/catalog/admin/file_manager.php?action=new_file&osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:09:41 -0700] "GET www.saorsastudios.com/catalog/admin/includes/languages/english/images/buttons/button_edit.gif HTTP/1.1" 200 429 "http://www.saorsastudios.com/catalog/admin/file_manager.php?info=index.html&osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:09:48 -0700] "GET www.saorsastudios.com/catalog/admin/define_language.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb HTTP/1.1" 200 30105 "http://www.saorsastudios.com/catalog/admin/file_manager.php?info=index.html&osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:09:57 -0700] "GET www.saorsastudios.com/catalog/admin/define_language.php?lngdir=english&filename=file_manager.php&osCAdminID=b26eec6b2bac788cb95c11610dad66bb HTTP/1.1" 200 14012 "http://www.saorsastudios.com/catalog/admin/define_language.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:10:04 -0700] "POST www.saorsastudios.com/catalog/admin/define_language.php?lngdir=english&filename=file_manager.php&action=save&osCAdminID=b26eec6b2bac788cb95c11610dad66bb HTTP/1.1" 302 5 "http://www.saorsastudios.com/catalog/admin/define_language.php?lngdir=english&filename=file_manager.php&osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:10:11 -0700] "GET www.saorsastudios.com/catalog/admin/define_language.php?lngdir=english&osCAdminID=b26eec6b2bac788cb95c11610dad66bb HTTP/1.1" 200 30055 "http://www.saorsastudios.com/catalog/admin/define_language.php?lngdir=english&filename=file_manager.php&osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:10:56 -0700] "GET www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb HTTP/1.1" 200 161315 "http://www.saorsastudios.com/catalog/admin/define_language.php?lngdir=english&osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:10:59 -0700] "GET www.saorsastudios.com/catalog/admin/includes/stylesheet.css HTTP/1.1" 304 - "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:03 -0700] "GET www.saorsastudios.com/catalog/admin/includes/general.js HTTP/1.1" 304 - "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:04 -0700] "GET www.saorsastudios.com/catalog/admin/images/oscommerce.gif HTTP/1.1" 304 - "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:04 -0700] "GET www.saorsastudios.com/catalog/admin/images/header_support.gif HTTP/1.1" 304 - "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:05 -0700] "GET www.saorsastudios.com/catalog/admin/images/header_checkout.gif HTTP/1.1" 304 - "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:05 -0700] "GET www.saorsastudios.com/catalog/admin/images/header_administration.gif HTTP/1.1" 304 - "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:06 -0700] "GET www.saorsastudios.com/catalog/admin/images/pixel_trans.gif HTTP/1.1" 304 - "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:06 -0700] "GET www.saorsastudios.com/catalog/admin/images/icons/current_folder.gif HTTP/1.1" 304 - "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:07 -0700] "GET www.saorsastudios.com/catalog/admin/images/icons/delete.gif HTTP/1.1" 304 - "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:07 -0700] "GET www.saorsastudios.com/catalog/admin/images/icon_arrow_right.gif HTTP/1.1" 304 - "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:08 -0700] "GET www.saorsastudios.com/catalog/admin/images/icons/folder.gif HTTP/1.1" 304 - "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:08 -0700] "GET www.saorsastudios.com/catalog/admin/images/icon_info.gif HTTP/1.1" 304 - "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:09 -0700] "GET www.saorsastudios.com/catalog/admin/images/icons/file_download.gif HTTP/1.1" 304 - "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:09 -0700] "GET www.saorsastudios.com/catalog/admin/includes/languages/english/images/buttons/button_reset.gif HTTP/1.1" 304 - "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:10 -0700] "GET www.saorsastudios.com/catalog/admin/includes/languages/english/images/buttons/button_upload.gif HTTP/1.1" 304 - "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:10 -0700] "GET www.saorsastudios.com/catalog/admin/includes/languages/english/images/buttons/button_new_file.gif HTTP/1.1" 304 - "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:11 -0700] "GET www.saorsastudios.com/catalog/admin/includes/languages/english/images/buttons/button_new_folder.gif HTTP/1.1" 304 - "http://www.saorsastudios.com/catalog/admin/file_manager.php?osCAdminID=b26eec6b2bac788cb95c11610dad66bb" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:37 -0700] "GET www.saorsastudios.com/catalog HTTP/1.1" 301 331 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:43 -0700] "GET www.saorsastudios.com/catalog/ HTTP/1.1" 200 24173 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:45 -0700] "GET www.saorsastudios.com/catalog/stylesheet.css HTTP/1.1" 200 6058 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:46 -0700] "GET www.saorsastudios.com/catalog/images/header_account.gif HTTP/1.1" 200 1245 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:47 -0700] "GET www.saorsastudios.com/catalog/images/header_cart.gif HTTP/1.1" 200 1376 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:49 -0700] "GET www.saorsastudios.com/catalog/images/header_checkout.gif HTTP/1.1" 200 1427 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:49 -0700] "GET www.saorsastudios.com/catalog/images/logo.gif HTTP/1.1" 200 13035 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:50 -0700] "GET www.saorsastudios.com/catalog/images/infobox/corner_left.gif HTTP/1.1" 200 123 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:51 -0700] "GET www.saorsastudios.com/catalog/images/pixel_trans.gif HTTP/1.1" 200 43 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:52 -0700] "GET www.saorsastudios.com/catalog/images/infobox/corner_right_left.gif HTTP/1.1" 200 52 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:54 -0700] "GET www.saorsastudios.com/catalog/images/infobox/arrow_right.gif HTTP/1.1" 200 69 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:55 -0700] "GET www.saorsastudios.com/catalog/includes/languages/english/images/buttons/button_quick_find.gif HTTP/1.1" 200 554 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:55 -0700] "GET www.saorsastudios.com/catalog/images/diamondsand.jpg HTTP/1.1" 200 15580 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:56 -0700] "GET www.saorsastudios.com/catalog/images/table_background_default.gif HTTP/1.1" 200 3517 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:57 -0700] "GET www.saorsastudios.com/catalog/images/hstkrhodochrosite1.jpg HTTP/1.1" 200 9735 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:11:59 -0700] "GET www.saorsastudios.com/catalog/images/cobaltmetaliccuff.jpg HTTP/1.1" 200 9041 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:12:01 -0700] "GET www.saorsastudios.com/catalog/images/turqcuff.jpg HTTP/1.1" 200 11968 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:12:03 -0700] "GET www.saorsastudios.com/catalog/images/aquaaquagrncobaltbrac.jpg HTTP/1.1" 200 6327 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:12:03 -0700] "GET www.saorsastudios.com/catalog/images/blkmetaliccuff.jpg HTTP/1.1" 200 15628 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:12:06 -0700] "GET www.saorsastudios.com/catalog/images/bracredredsilv1.jpg HTTP/1.1" 200 19841 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:12:07 -0700] "GET www.saorsastudios.com/catalog/images/braccoporganic1.jpg HTTP/1.1" 200 21660 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:12:09 -0700] "GET www.saorsastudios.com/catalog/images/infobox/corner_right.gif HTTP/1.1" 200 123 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:12:10 -0700] "GET www.saorsastudios.com/catalog/includes/languages/english/images/icon.gif HTTP/1.1" 200 195 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:12:11 -0700] "GET www.saorsastudios.com/catalog/images/paymenttypes.jpg HTTP/1.1" 200 2608 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:12:13 -0700] "GET www.saorsastudios.com/catalog/images/diamondpeach.jpg HTTP/1.1" 200 17702 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:13 -0700] "GET www.saorsastudios.com/catalog HTTP/1.1" 301 331 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:17 -0700] "GET www.saorsastudios.com/catalog/ HTTP/1.1" 200 24306 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:19 -0700] "GET www.saorsastudios.com/catalog/images/header_account.gif HTTP/1.1" 200 1245 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:19 -0700] "GET www.saorsastudios.com/catalog/stylesheet.css HTTP/1.1" 200 6058 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:21 -0700] "GET www.saorsastudios.com/catalog/images/logo.gif HTTP/1.1" 200 13035 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:23 -0700] "GET www.saorsastudios.com/catalog/images/header_cart.gif HTTP/1.1" 200 1376 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:24 -0700] "GET www.saorsastudios.com/catalog/images/header_checkout.gif HTTP/1.1" 200 1427 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:24 -0700] "GET www.saorsastudios.com/catalog/images/infobox/corner_left.gif HTTP/1.1" 200 123 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:26 -0700] "GET www.saorsastudios.com/catalog/images/pixel_trans.gif HTTP/1.1" 200 43 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:26 -0700] "GET www.saorsastudios.com/catalog/images/infobox/corner_right_left.gif HTTP/1.1" 200 52 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:27 -0700] "GET www.saorsastudios.com/catalog/images/infobox/arrow_right.gif HTTP/1.1" 200 69 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:31 -0700] "GET www.saorsastudios.com/catalog/images/diamondsand.jpg HTTP/1.1" 200 15580 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:31 -0700] "GET www.saorsastudios.com/catalog/includes/languages/english/images/buttons/button_quick_find.gif HTTP/1.1" 200 554 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:32 -0700] "GET www.saorsastudios.com/catalog/images/table_background_default.gif HTTP/1.1" 200 3517 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:33 -0700] "GET www.saorsastudios.com/catalog/images/hstkrhodochrosite1.jpg HTTP/1.1" 200 9735 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:34 -0700] "GET www.saorsastudios.com/catalog/images/cobaltmetaliccuff.jpg HTTP/1.1" 200 9041 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:39 -0700] "GET www.saorsastudios.com/catalog/images/blkmetaliccuff.jpg HTTP/1.1" 200 15628 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:41 -0700] "GET www.saorsastudios.com/catalog/images/aquaaquagrncobaltbrac.jpg HTTP/1.1" 200 6327 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:42 -0700] "GET www.saorsastudios.com/catalog/images/turqcuff.jpg HTTP/1.1" 200 11968 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:45 -0700] "GET www.saorsastudios.com/catalog/images/bracredredsilv1.jpg HTTP/1.1" 200 19841 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:49 -0700] "GET www.saorsastudios.com/catalog/images/braccoporganic1.jpg HTTP/1.1" 200 21660 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:50 -0700] "GET www.saorsastudios.com/catalog/images/diamondpeach.jpg HTTP/1.1" 200 18104 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:51 -0700] "GET www.saorsastudios.com/catalog/images/infobox/corner_right.gif HTTP/1.1" 200 123 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:52 -0700] "GET www.saorsastudios.com/catalog/includes/languages/english/images/icon.gif HTTP/1.1" 200 195 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:05:13:53 -0700] "GET www.saorsastudios.com/catalog/images/paymenttypes.jpg HTTP/1.1" 200 2608 "http://www.saorsastudios.com/catalog/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" 88.254.40.251 - - [21/Feb/2007:10:58:24 -0700] "GET www.saorsastudios.com/catalog/admin/backup.php HTTP/1.1" 403 1695 "http://search.msn.com/results.aspx?q=inurl%3A%2Fadmin%2Fbackup.php%3F&first=61&FORM=PORE" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" Regards, Advanced Hosting Support ________________________________________ If you need further assistance with this matter, please reply to this email or contact customer service at (480) 505-8877 and reference [incident ID: 1676832]. Thanks, GoDaddy.com I have no idea what it means except that I got compromised through my osCommerce Link to comment Share on other sites More sharing options...
slackerjack Posted February 22, 2007 Share Posted February 22, 2007 I'm not sure that I can help but I will try. As long as your database is still intact you should be able to reinstall OSC an be up and running (minus any extra contribs you might have installed). That being said, if you tried to reinstall OSC and directed it to the address of your database, it may have over written the contents of the database with the default values. Hopefully you have a backup of your database that you can restore after you install OSC. This should get you running at least. Hope this is somewhat helpful. I'm not in the middle of nowhere, but I can see it from here! Link to comment Share on other sites More sharing options...
stealthpaws Posted February 22, 2007 Author Share Posted February 22, 2007 I'm not sure that I can help but I will try. As long as your database is still intact you should be able to reinstall OSC an be up and running (minus any extra contribs you might have installed). That being said, if you tried to reinstall OSC and directed it to the address of your database, it may have over written the contents of the database with the default values. Hopefully you have a backup of your database that you can restore after you install OSC. This should get you running at least. Hope this is somewhat helpful. No, I have not tried to reinstall yet, and yes I have a database back-up of sorts ... I had not backed up from the admin section- I forget now what the msg was, but it kept telling me that I needed to have a directory...which I did, but it never would read it and let me back up. I used mySQL to do an export to a CSV file. The big BUT here is, according to the hosting techs- they think the database was corrupted and that's why it won't work. I tried looking through the jumble that appeared in an excel file as a CSV, but I really don't know what to look for, so I closed it before I did some irreperable damage. The current status is that the hosting service is looking into restoring my files from their backup. I've stipulated that if they are going to charge me (unknown at this time) then they are to call me first since I'm not willing to pay them $150 to do the back up. I should tell you that I write and understand html, have a rudimentary knowledge of javascript...(barely- in other words I passed the class, but don't use it regularly) and almost no working knowledge of PHP. I just sort of dig in and try to read what is being called from where and follow the trail. I figured if I did a reinstall, I could upload my existing files over the new installation, just like I have done with the contributions, making sure that the correct file paths are present. Is that a fair assumption? BTW...thank you for posting to this thread. Ive been waiting all day for someone to answer, so I really appreciate it. Link to comment Share on other sites More sharing options...
♥Vger Posted February 22, 2007 Share Posted February 22, 2007 Well, what you've posted from your Hosting Company is an access log. I can't see a hack in there - unless they gained access to your admin panel (maybe that's what your hosting company is trying to point out to you). You did rename the 'admin' folder and Password Protect it? Does your host provide you with a cPanel web hosting contorl panel? If so the hack may have been done via cPanel as there is an old exploit which catches out hosts who don't upgrade their hosting control panels. Vger Link to comment Share on other sites More sharing options...
stealthpaws Posted February 22, 2007 Author Share Posted February 22, 2007 Well, what you've posted from your Hosting Company is an access log. I can't see a hack in there - unless they gained access to your admin panel (maybe that's what your hosting company is trying to point out to you). You did rename the 'admin' folder and Password Protect it? Does your host provide you with a cPanel web hosting contorl panel? If so the hack may have been done via cPanel as there is an old exploit which catches out hosts who don't upgrade their hosting control panels. Vger ok...re: the control panel...I'm not sure what you refer to here...yes, they do have a control panel but I don't know if it's a cPanel or not. Is that like a brand name for them, or an abbreviation? There was an htaccess set as far as I know. I had a lot of trouble doing that, as no one could tell me how to do it on that server. I THINK it was proper, but it's been a long time since I installed this and I don't remember. I changed the install file name, but no, I did not change "Admin" - since it is referenced in all those php files, I would not have attempted to do that even had I known to. What I'm still wondering is if my configure files are correct and in the right places. It all could be as simple as one of those configure files being out of place couldn't it? Thanks for posting... I'm sitting here at the computer refreshing every few minutes. Any help is appreciated. Link to comment Share on other sites More sharing options...
♥Vger Posted February 22, 2007 Share Posted February 22, 2007 What your file structure is only you can answer, but there are two configure.php files: includes/configure.php admin/includes/configure.php Renaming the 'admin' folder is quite simple: 1. FTP to your website, rename the admin folder 2. Go to admin/includes/configure.php and change the references to /admin/ to /new_name/ You should be able to password protect that folder using the Password or Directory Protection feature in your web hosting control panel. Yes "cPanel" is a brand name, but if you have it then it will say it is cPanel in your web hosting control panel. Other panels are Plesk and Ensim - but it is cPanel that has the known exploit. Vger Link to comment Share on other sites More sharing options...
stealthpaws Posted February 22, 2007 Author Share Posted February 22, 2007 What your file structure is only you can answer, but there are two configure.php files: includes/configure.php admin/includes/configure.php Renaming the 'admin' folder is quite simple: 1. FTP to your website, rename the admin folder 2. Go to admin/includes/configure.php and change the references to /admin/ to /new_name/ You should be able to password protect that folder using the Password or Directory Protection feature in your web hosting control panel. Yes "cPanel" is a brand name, but if you have it then it will say it is cPanel in your web hosting control panel. Other panels are Plesk and Ensim - but it is cPanel that has the known exploit. Vger Thank you Vger...I'm on the phone with the hosting company, and they tell me that the only way to pwd protect any of my files is to create .htaccess files for each folder I want to protect. The "control panel" does not offer that feature. Wierd, huh? Their control panel is called R.O. I expect I'll be spending the rest of the day attempting to learn enough programming to generate .htaccess files for all my primary folders. I'll check those two config files shortly, and thank you again for your response. Oh, and I love your pussycat! Link to comment Share on other sites More sharing options...
stealthpaws Posted February 22, 2007 Author Share Posted February 22, 2007 Ok...reading some great EASY tuts on .htaccess. The first thing I see that may have created this vulnerability is my .htaccess file was possibly incorrectly written, or it may have somehow gotten moved...(accidental drag and drop?). In the access logs, it does show the .htaccess as having been violated...and reading the tut, I see that one possible function of .htaccess is redirection, which is what seems to have happened to my index.html and index.php pages. I'm posting this here for anyone questioning the importance of .htaccess. Learn from my mistake...make sure it's in place and working! I don't know if it's appropriate to post the links to the tuts here, but if you do a google on .htaccess tutorials, you'll find them. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.