bobeisenberg Posted May 21, 2010 Posted May 21, 2010 My site has been operational for about 4 years, with no problems till now. Today one of my customers created an account and placed an order. He completed the credit card payment via Protx. The card payment was accepted, but the website did not record the order. I only found out when I checked the credit card payment notification. Please can someone help me with 2 issues: 1. Why did this happen and how do I stop it happening again? 2. How can I manually input the order? Many thanks. Bob
germ Posted May 21, 2010 Posted May 21, 2010 Looks to me like the shop has been hacked. :'( There are hundreds of invisible spam links at the bottom of the page source. That may have something to do with your problem, and maybe not. In either case, it's an issue that needs addressed. If I suggest you edit any file(s) make a backup first - I'm not perfect and neither are you. "Given enough impetus a parallelogramatically shaped projectile can egress a circular orifice." - Me - "Headers already sent" - The definitive help "Cannot redeclare ..." - How to find/fix it SSL Implementation Help Like this post? "Like" it again over there >
bobeisenberg Posted May 22, 2010 Author Posted May 22, 2010 Looks to me like the shop has been hacked. :'( There are hundreds of invisible spam links at the bottom of the page source. That may have something to do with your problem, and maybe not. In either case, it's an issue that needs addressed. Germ thanks. Do you know how to get rid of the spam links? And how they got there in the first place?
germ Posted May 22, 2010 Posted May 22, 2010 Germ thanks. Do you know how to get rid of the spam links? And how they got there in the first place? You have a strange hack indeed in the fact that it isn't on ALL your pages. Many of the pages have the spam links, but some don't. Most hacks infect all pages on a site. To get rid of it you have a few choices: 1. Find the code and manually remove it from all the infected files. 2. Restore the files from a non-infected backup. 3. Wipe it all out at start over. There are many ways to get infected. It's hard to say what happened with yours. There is a useful thread here: How to Secure Your Site If I suggest you edit any file(s) make a backup first - I'm not perfect and neither are you. "Given enough impetus a parallelogramatically shaped projectile can egress a circular orifice." - Me - "Headers already sent" - The definitive help "Cannot redeclare ..." - How to find/fix it SSL Implementation Help Like this post? "Like" it again over there >
bobeisenberg Posted May 23, 2010 Author Posted May 23, 2010 I will restore from a non-infected back-up. I have followed the thread you supplied and have downloaded all the security features, which I will install. Thanks for all your help and advice.
Recommended Posts
Archived
This topic is now archived and is closed to further replies.