Jump to content

Vishal's Content

There have been 16 items by Vishal (Search limited from 15-Jun 20)


Sort by                Order  

#6001 Cs-Cart Hacked? :(

Posted by Vishal on 19 October 2006 - 09:01 PM in General Questions

yes the domainname.com/shop/ is where cs-cart is installed.

P.S. domainname.com is just used to hide actual name, but I am sure you know what I mean.



#5998 Cs-Cart Hacked? :(

Posted by Vishal on 19 October 2006 - 08:46 PM in General Questions

I do not have 'all' the logs and details in front of me, as I am working on my clients server. However server admin did specify that

Also data was uploaded to /home/httpd/vhosts/domainname.com/httpdocs/shop/images , which indicates that the domainname.com domain in particular has website codew which enabled this exploit to occur.




#5989 PHP Bulk Emailer under /skins/

Posted by Vishal on 19 October 2006 - 07:44 PM in General Questions

the db1.php seems to have uploaded some content under root folder and affected few other sites on the server. Seems like I am going to have to make the call for reformat and restart.



#5987 PHP Bulk Emailer under /skins/

Posted by Vishal on 19 October 2006 - 07:42 PM in General Questions

I guess we are talking at both the posts.. lets just talk here :

Its is a dedicted server.



#5986 Cs-Cart Hacked? :(

Posted by Vishal on 19 October 2006 - 07:41 PM in General Questions

I have created a new template and have made backup of template and cs-cart database.. Am just thinking of asking server admin to reformat the HD and do new start.

Any easier suggestion?



#5984 PHP Bulk Emailer under /skins/

Posted by Vishal on 19 October 2006 - 07:39 PM in General Questions

Any idea if this is cuz of cs-cart or something?



#5981 PHP Bulk Emailer under /skins/

Posted by Vishal on 19 October 2006 - 07:31 PM in General Questions

On my server for some reason PHP Bulk Emailer seems to present. I am not sure if the files came along with cs-cart.

It is present at /shop/skins/

food.php 600 chmod
head.php 600 chmod
mysql.info.php 600 chmod
nat.php 600 chmod

Any idea if the files came with cs-cart or is my server compromised.

Thank you for the help.



#5979 Cs-Cart Hacked? :(

Posted by Vishal on 19 October 2006 - 07:23 PM in General Questions

Today I was informed by my web host that my server seems to be compromised and little more digging points it towards cs-cart. Can anyone help me understand what is going on.

1) Under /shop/ there is a file db1.php which seems to be # 1 cause for the issue. (/shop/ is where cs-cart is installed. The alert caused by db1.php is PHP.RSTBackdoor and information for it can be found at http://www.symantec....4217-99&tabid=1


2) Under /shop/skins/ there seems to have been created a folder by the name /pro/ and under that the file xh seems to be another thing that is cauzing norton antivirus to cause the alert. The alert caused by this one is 'hacktool'.

Any one knows what is going on & how to fix this?

Thank you for the help.



#2941 Membership Privileges Configuration Issue

Posted by Vishal on 07 July 2006 - 11:07 PM in v1.x Configuration

Thank you Zeke,

It was very simple and it worked like a charm.


Vishal



#2928 Product Appears after Deletion

Posted by Vishal on 07 July 2006 - 01:54 AM in v1.x Issues & Troubleshooting

Cool I will look into that and clear the cache.

Thank you.



#2927 No Product Detailed Page : Is it possible?

Posted by Vishal on 07 July 2006 - 01:51 AM in v1.x Configuration

Cool sounds easy enough..

Thank you.



#2875 csimg1.gif in Invoice

Posted by Vishal on 06 July 2006 - 09:18 AM in v1.x Configuration

Is there a way to add custom image within the invoice in the place of csimg1.gif ?

I tried uploading an image under /mail/images/ however it does not display image within the the email.

Next I tried removing image all together, so I edited invoice.tpl and commented the line where invoice logo appears. Now the output seems good, however the email is having an attachment of csimg1.gif but the image is no where in the email & when I try to open the image it gives the message 'drawing failed'?

Any idea on what is going on?

Thank you for the help.



#2874 No Product Detailed Page : Is it possible?

Posted by Vishal on 06 July 2006 - 08:57 AM in v1.x Configuration

Is there a way to not have the product detailed page. As our shopping cart is pretty simple & there is no need for detailed description page for the product.

Thank you for the help.



#2873 Can't Delete Admin/Admin account?

Posted by Vishal on 06 July 2006 - 08:35 AM in General Questions

I am unable to delete the default Admin/Admin account, anyones knows how can this be done?

Thank you.



#2872 Product Appears after Deletion

Posted by Vishal on 06 July 2006 - 07:56 AM in v1.x Issues & Troubleshooting

I have deleted the test product from Admin section, and am not seeing it while browsing the website via category, however it shows on "recently" views :(

Any help.

Vishal



#2869 Membership Privileges Configuration Issue

Posted by Vishal on 06 July 2006 - 07:41 AM in v1.x Configuration

I am trying to use Membership Privileges setting so that a 'Staff Member' can get access to certain admin features, however even after updating the Membership Privileges, when staff members logs in, 'All" admin options are available.

----------------------------------------------------
Membership Setting

Account Type : Administrator
Signup for Membership : Staff Member
Active Membership : Checked

Privileges
View Orders
Change Order Status

View Catalog
Manage Catalog

View Users
Manager Users

View Shipping
Manage Shipping
View taxes
View Locations
Manage Locations
View Payments
Manage Payments

----------------------------------------------------


Any idea on if I am doing something or how can this be fixed?

Thank you for the help.

Vishal