musicmaestro Posted July 7, 2010 Posted July 7, 2010 One of our websites has been hit by a malware attack. I notice the file account_history_info_full.php is present in the route folder on our server. This file is full of mixed letters and numbers and I haven't noticed it before. A Google search does not bring any information back about it. Is this a valid oscommerce file or is it the problem of my malware attack? Thanks guys Steve
musicmaestro Posted July 7, 2010 Author Posted July 7, 2010 Since posting this, found it was the <script src="http://nt02.co.in/3"> script causing the problem. I would still be interested in my original question though.
Jan Zonjee Posted July 7, 2010 Posted July 7, 2010 Since posting this, found it was the <script src="http://nt02.co.in/3"> script causing the problem. I would still be interested in my original question though. No, account_history_info_full.php is not an original osC file; account_history_info.php is. But it could be from a contribution you added? From what you describe it's probably not. Strange that this directory allowed a file to be written to it then. What's the file date of it. Old, or new?
Recommended Posts
Archived
This topic is now archived and is closed to further replies.