Post by weiloon1234 » Tue Mar 29, 2016 9:16 pm

Hi guys

i have 1 opencart 1.5.6.4 installed and run about 1 years, nowadays suddenly it has weird case happend

sometime, the /catalog/model/tool/image.php has been renamed to image.php.suspected
sometime, random file in /system/library/ will be renamed to original_file_name.php.suspected
sometime, some weird long random name.html will be generate and its in everywhere, like 3D44js_3lD2.html at root folder

i guess my server has been hacked, what to do?
what i do so far is change all the password for FTP/CPANEL/SSH/DB

the hack is server related or oc related?

Newbie

Posts

Joined
Tue Mar 29, 2016 9:11 pm

Post by IP_CAM » Wed Apr 06, 2016 5:17 am

your Server was not hacked, your server Security Program only changed the file name, because it figured/declared the file as a potential Break-IN Door/Hole.(what it is, especially, if you allow anyone uncontrolled UPLOADS in any Form!)
Contact your Hoster.
Ernie

My Github OC Site: https://github.com/IP-CAM
5'200 + FREE OC Extensions, on the World's largest private Github OC Repository Archive Site.


User avatar
Legendary Member

Posts

Joined
Tue Mar 04, 2014 1:37 am
Location - Switzerland
Who is online

Users browsing this forum: No registered users and 44 guests