Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Help! Php/ SQL errors all over website


Hampo27

Recommended Posts

I am having problems on my little website. All I've diverse differently today is to click on world mail shipping module and since then (abd uodate orders as usual) and website has gone mad with errors everywhere.

Need someone to assist, we are moving to a new site shortly with dedicated support and this happens in last month when our old support person isn't contactable.

If anyone can look at it from front end and thinks they can fix please contact jane@@littlesatsuma.com thanks x

Link to comment
Share on other sites

@@Hampo27

 

Your website has been hacked !

 

Follow these steps to clean and secure your website:

 

1) Lock down your site by using an .htaccess password so your customers are not attacked by the hackers code.

 

2) FTP all of the files to your local machine and use a program like WinGrep to identify and remove all malicious and anomalous files containing hacker code. Look for keywords such as 'base64','eval','decode'.

 

3) Delete the files on your hosting account before uploading the clean files.

 

4) FTP the clean files back to your hosting account and read and implement the security patches and contributions found in these two threads. Admin Security and Website Security.

 

5) Change all of your passwords: FTP, CPANEL, STORE ADMIN and DATABASE

 

6) Make sure File and Directory Permissions are set correctly. Directories no higher than 755, Files no higher than 644 and the TWO configure.php files no higher than 444

 

7) If your site has been 'black listed' as an attack site by Google, then log into Google Webmaster Tools and submit the site to be re-indexed and verified to be removed from the 'black list'

 

8) Remove the .htaccess password protection so your customers can resume making purchases from your website.

 

9) Monitor your website using the newly installed contributions to prevent future hacker attacks.

 

10) If you feel you can not perform any of the above steps, you should seek professional help to ensure all malware is removed.

 

 

Chris

Link to comment
Share on other sites

@@DunWeb

 

What makes you think the site is hacked????

 

Looks to me like config_cache.php is corrupted

Link to comment
Share on other sites

@@FWR Media

 

The eval code added just about the footer within the body tags.

 

 

Chris

 

That just looks like an error generated via the eval function in the configuration cache contribution.

Link to comment
Share on other sites

@@Hampo27

 

My advice is: -

 

http://www.oscommerce.com/community/contributions,1862

 

Take a look at earlier versions of this contribution and reverse the modifications made to includes/application_top.php

 

This won't remove the whole contribution but it will remove the problem I believe.

 

Once the problem is gone you can remove the other bits at your leisure.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...