Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Please help, someone hijacked my site


jpool

Recommended Posts

Hi:

 

my site looks normal but the categories have only one category, checked Db no sign of it and if u click on a product the site works ok.

some other people have told me it works ok but in some links it goes to a gay porn site.

any suggestions?

Please help

Link to comment
Share on other sites

If you can get the domain name for the site you are sometimes redirected, contact your host and ask if they are hosting your domain and the other one on the same server. If this is the case, it might be some settings they have to change on their server.

 

abra

The First Law of E-Commerce: If the user can't find the product, the user can't buy the product.

 

Feedback and suggestions on my shop welcome.

 

Note: My advice is based on my own experience or on something I read in these forums. No guarantee it'll work for you! Make sure that you always BACKUP the database and the files you are going to change so that you can rollback to a working version if things go wrong.

Link to comment
Share on other sites

This can happen when you are on a shared server and you are using the default temp directory of the server (while there are other osCommerce sites also hosted on that same server). Create your own temp directory, give it the appropriate access rights and point your admin cache and session path to that temp directory.

Link to comment
Share on other sites

Hi guys thanks 4 your answers.

It never happened before an i had the site for well over 1 and a half years.

 

which one is the temp directory? and what permissions should i give it?

I might as well try right?

Link to comment
Share on other sites

We have found the same thing today :'( Although so far as I can tell nothig directs to porn.

 

If you look at the index php is their friendly note from the hackers?

 

I'm not sure what to do now, the people that developed the site for me are very slow at respondig and I can't wait days to get it fixed.

 

Sadly it has never occured to me to back the site up, so I'm guessing restoring it would leave me with nothing?

 

How do I stop the gits from getting in again??

Link to comment
Share on other sites

We have found the same thing today :'( Although so far as I can tell nothig directs to porn.

 

If you look at the index php is their friendly note from the hackers?

 

I'm not sure what to do now, the people that developed the site for me are very slow at respondig and I can't wait days to get it fixed.

 

Sadly it has never occured to me to back the site up, so I'm guessing restoring it would leave me with nothing?

 

How do I stop the gits from getting in again??

I m sorry to hear that, why dont u go and back up whatevers left

i have no message from the hackers, and probably the temp problem is rigth, i have no modified files or db, and i just refreshed the categories box and one of the problems is gone.

 

If you want, pm me you index.php file and i can compare it with mine and an original one, or just post your domain here and we can all give u ideas as to what it can be and how easy or hard it is to fix,

i would recomend though to go and have a look at your database and backup whatever is there now, if you have a company that looks after the site for u, i m sure they must have some sort of back up schedule,

and if they dont, leason learned, start doing them yourself every few days, it s very easy to do and it only takes a few minutes

Link to comment
Share on other sites

Switch to IX webhosting, they test daily to ensure they are hacker free, I have been useing them for several years and have never had any issues with hackers, they also offer osCommerce built right in to their hosting control panel along with the dbs that you need and full php support. They will even help you move your site and store over to their servers. :thumbsup:

Link to comment
Share on other sites

Have you guys found the problem yet because I'm having the same problem with my categories (no gay porn though). It just started happening last week but I can't find any evidence of a hacker. I've been looking everwhere but I can't seem to resolve this category display problem.

 

-Tony

Link to comment
Share on other sites

I've had a site hacked before, they were a professional organisation that changed only the main page to say something like hacked by so and so

 

they were harmless and gave me back full control of my domain

 

still have no idea how they did it though but it was scary!!

Kind regards;

Link to comment
Share on other sites

There are two scenarios when a shop seems to be hacked. The first post here was about some links in the category section to open pages in another domain. This is an issue with the temp folders when more than one osC shop is installed in the default way on a server. In this case, contact the webhost and they should be able to help fix the problem. The shop has not been hacked.

 

The other case is when some of your pages have been defaced/exchanged by hackers. They might have come in through your shop when your admin is not secured or some vulnerability in the php code. That's why you should always install the latest fixes for osC. They might also have hacked into the server where your shop is hosted. In this case it's got nothing to do with you but with the server security. This is the responsibility of your webhost.

 

abra

The First Law of E-Commerce: If the user can't find the product, the user can't buy the product.

 

Feedback and suggestions on my shop welcome.

 

Note: My advice is based on my own experience or on something I read in these forums. No guarantee it'll work for you! Make sure that you always BACKUP the database and the files you are going to change so that you can rollback to a working version if things go wrong.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...