Today I was informed by my web host that my server seems to be compromised and little more digging points it towards cs-cart. Can anyone help me understand what is going on.
Under /shop/skins/ there seems to have been created a folder by the name /pro/ and under that the file xh seems to be another thing that is cauzing norton antivirus to cause the alert. The alert caused by this one is ‘hacktool’.
I have created a new template and have made backup of template and cs-cart database… Am just thinking of asking server admin to reformat the HD and do new start.