Post by weiloon1234 » Tue Mar 29, 2016 9:16 pm

Hi guys

i have 1 opencart installed and run about 1 years, nowadays suddenly it has weird case happend

sometime, the /catalog/model/tool/image.php has been renamed to image.php.suspected
sometime, random file in /system/library/ will be renamed to original_file_name.php.suspected
sometime, some weird long random name.html will be generate and its in everywhere, like 3D44js_3lD2.html at root folder

i guess my server has been hacked, what to do?
what i do so far is change all the password for FTP/CPANEL/SSH/DB

the hack is server related or oc related?



Tue Mar 29, 2016 9:11 pm

Post by IP_CAM » Wed Apr 06, 2016 5:17 am

your Server was not hacked, your server Security Program only changed the file name, because it figured/declared the file as a potential Break-IN Door/Hole.(what it is, especially, if you allow anyone uncontrolled UPLOADS in any Form!)
Contact your Hoster.

I'm rarely active at the OC Forum lately. To reach me, contact:
A Demoversion of my free OpenCart LIGHT v. Software Edition
can be seen in real Action here:
1'200+ FREE OC Extension-Repositories - from OC v.1.5.x up,
on the world's largest OC-related Github Site:

User avatar
Legendary Member


Tue Mar 04, 2014 1:37 am
Location - Switzerland
Who is online

Users browsing this forum: No registered users and 11 guests