skinzs Posted February 26, 2011 Share Posted February 26, 2011 hello everyone, my name is skinzs i am from Malaysia, my os commerce website keep getting flaged by google and it is under constant attack, this is the latest email that i receive fm my hosting company.They advised me to upgrade to oscommerce version 4, how much will that cost me ? scriptlance.com programmer are asking for usd400.00,is that the reasonable price ? Pls look at this msg and yr advise and opinion appreciated. Hello, We have reviewed the account hosting the "jamugarden2u.com" domain and found the root ".htaccess" file to have been modified to send all requests to an external site. We also found some PHP shell code files which we have removed. PHP SHELL CODE FILES /home/maria72/public_html/images/imageth.php /home/maria72/public_html/images/img64625b6.php /home/maria72/public_html/images/main.php Please upgrade the following outdated osCommerce installations as well as any component/module each respective installation might utilize. In particular please add password protection to the "admin" directory as there's a known exploit allowing the execution of arbitrary code without first having to provide valid login credentials. If you're unfamiliar with how this is done, we provide a great support article covering password protection here: http://support.hostgator.com/articles/cpanel/password-protect-directories-icon [!] Outdated/Insecure osCommerce Instance(s) Found: ========================================================================================================================= Version :: Location :: Admin Dir. ========================================================================================================================= 2.2 RC2a :: /home/maria72/public_html/ :: Not Secure 2.2 RC2a :: /home/maria72/public_html/Backup/ :: Secure 2.3 :: /home/maria72/public_html/Backup/catalog/ :: Not Secure Steven L. Linux Administrator / Security HostGator.com LLC -------------------------------------------------------------------------------- Link to comment Share on other sites More sharing options...
Guest Posted February 26, 2011 Share Posted February 26, 2011 Follow these steps to clean and secure your website: 1) Lock down your site by using an .htaccess password so your customers are not attacked by the hackers code. 2) FTP all of the files to your local machine and use a program like WinGrep to identify and remove all malicious and anomalous files containing hacker code. 3) Delete the files on your hosting account before uploading the clean files. 4) FTP the clean files back to your hosting account and read and implement the security patches and contributions found in these two threads. Admin Security and Website Security. 5) Change all of your passwords: FTP, CPANEL, STORE ADMIN and DATABASE 6) Make sure File and Directory Permissions are set correctly. Directories no higher than 755, Files no higher than 644 and the TWO configure.php files no higher than 444 7) If your site has been 'black listed' as an attack site by Google, then log into Google Webmaster Tools and submit the site to be re-indexed and verified to be removed from the 'black list' 8) Remove the .htaccess password protection so your customers can resume making purchases from your website. 9) Monitor your website using the newly installed contributions to prevent future hacker attacks. 10) If you feel you can not perform any of the above steps, PM me for help, because if you miss any of these steps your site may remain accessible to the hacker. Chris Link to comment Share on other sites More sharing options...
skinzs Posted April 14, 2011 Author Share Posted April 14, 2011 Follow these steps to clean and secure your website: 1) Lock down your site by using an .htaccess password so your customers are not attacked by the hackers code. 2) FTP all of the files to your local machine and use a program like WinGrep to identify and remove all malicious and anomalous files containing hacker code. 3) Delete the files on your hosting account before uploading the clean files. 4) FTP the clean files back to your hosting account and read and implement the security patches and contributions found in these two threads. Admin Security and Website Security. 5) Change all of your passwords: FTP, CPANEL, STORE ADMIN and DATABASE 6) Make sure File and Directory Permissions are set correctly. Directories no higher than 755, Files no higher than 644 and the TWO configure.php files no higher than 444 7) If your site has been 'black listed' as an attack site by Google, then log into Google Webmaster Tools and submit the site to be re-indexed and verified to be removed from the 'black list' 8) Remove the .htaccess password protection so your customers can resume making purchases from your website. 9) Monitor your website using the newly installed contributions to prevent future hacker attacks. 10) If you feel you can not perform any of the above steps, PM me for help, because if you miss any of these steps your site may remain accessible to the hacker. Chris Link to comment Share on other sites More sharing options...
skinzs Posted April 14, 2011 Author Share Posted April 14, 2011 thank you Chris for teaching me steps to clean and secure my website. (Os commerce v3) Chris, i managed to survive it have been one month since the last attack, tq....:) regards maria hasnida adam Malaysia Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.