It seems like there is issue with import/export script for 2.06 which allows hackers to upload the virus. My site got defaced again in the import data and export data page. On my host, i found the new core.php which contain virus Backdoor.PHP.Agent.cq staying all over the place in every folder and this is the same as what I first got hacked yesterday.
After got hacked the first time yesterday, I cleaned up all the files on my host and restore the site from my backup. Less than 2 hours later, my site got hacked again and the same virus appeared again.
So please beware of this guys. I’ve notice CS-Cart already, hope that they will fix this ASAP.
is there anything i can check my site for virus ?
I am not sure if my site get virus or not…
Could this be averted if admin.php was in its own directory with the ability to password protect the directory? I have always found this odd to have it out in the root …every other ecommerce software I’ve tried has it buried for that reason. I have not been successful at putting this file in a directory and trying to tell the config file that it is not in root.
[quote name=‘netra4u’]is there anything i can check my site for virus ?
I am not sure if my site get virus or not…[/QUOTE]
I tried to open that file through Dreamweaver and my antivirus just picked it up.
They can also look at your robots file in root so if it is listed there they will know what you named it and where its at