chba Posted October 21, 2013 Share Posted October 21, 2013 Your license key 1 is invalid. Possible reasons for this include: The license key has been entered incorrectly The domain being used to access your install has changed The IP address your install is located on has changed The directory you are using has changed I just woke up this morning and I was going to check some tickets, and this above message is showing. License key is correct, domain, IP address and directory didn't change. I have no idea why did this start happening, does anyone have any solution? 0 Quote Link to comment Share on other sites More sharing options...
Xoolon Posted October 21, 2013 Share Posted October 21, 2013 Same thing has happened to me today, hoping it's not hacked as two security releases of WHMCS have been released in the last couple of days while I was away. I am running 5.2.8 at the point where this happened. Waiting to hear from support. 0 Quote Link to comment Share on other sites More sharing options...
Xoolon Posted October 21, 2013 Share Posted October 21, 2013 I have now regained access by using the link to enter a new key and providing the one I originally used. So looks like the license key was lost, I'm not sure why. 0 Quote Link to comment Share on other sites More sharing options...
UH-James Posted October 21, 2013 Share Posted October 21, 2013 It's worth noting that the 5.2.8 vulnerability POC (proof of concept) script contains a function to break your WHMCS license. I probably wouldn't get away with posting it here, and my python's a little rusty, but this may well indicate your installation has been compromised. Treat it as such until you know otherwise. 0 Quote Link to comment Share on other sites More sharing options...
cgarwood Posted October 21, 2013 Share Posted October 21, 2013 Exact same thing happened to me today. Your installation was likely hacked and code was inserted into the configuration.php file. I would manually check it with a file editor, because just changing the key will likely not remove the exploited code from the configuration.php file. Definitely treat it as compromised. 0 Quote Link to comment Share on other sites More sharing options...
Alex - Arvixe Posted October 21, 2013 Share Posted October 21, 2013 We've been getting several tickets with the same issue, we're finding in almost all cases the clients WHMCS has been compromised. Check your configuration.php file for any API access keys or malicous coding etc... Make sure to reset all of your clients passwords as well as the admins, you should consider your installation compromised. 0 Quote Link to comment Share on other sites More sharing options...
chba Posted October 21, 2013 Author Share Posted October 21, 2013 How do I reset all passwords from my clients? 0 Quote Link to comment Share on other sites More sharing options...
ufshane Posted October 21, 2013 Share Posted October 21, 2013 http://forum.whmcs.com/showthread.php?51522-Addon-Bulk-Password-Change There is an addon for that, I have used it in the past 0 Quote Link to comment Share on other sites More sharing options...
bugster Posted October 24, 2013 Share Posted October 24, 2013 Yep, the got me too. Deleted my clients table and my activity log table. Look like they changed the cc_encryption key in my configuration file as well. 0 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.