| ||||||||||
Shopping cart software Solutions for online shops and malls | ||||||||||
|
X-Cart Home | FAQ | Forum rules | Calendar | Mark Forums Read | User manuals | Login |
Warning: Iframe based attacks using stolen FTP access info | ||||
|
|
Thread Tools |
#81
|
|||||||
|
|||||||
Re: Warning: Iframe based attacks using stolen FTP access info
Quote:
that is ok ::1 localhost is for ipv6. Not to worry.
__________________
Emerson █ Total Server Solutions LLC- Quality X-Cart Hosting █ Recommended X-Cart Hosting Provider - US and UK servers █ Does your host backup your site? We do EVERY HOUR!!! █ Shared Hosting | Managed Cloud | Dedicated Servers |
|||||||
#82
|
|||||||||
|
|||||||||
Re: Warning: Iframe based attacks using stolen FTP access info
Quote:
Thats good to know! Thanks Emerson. |
|||||||||
#83
|
|||||||
|
|||||||
Re: Warning: Iframe based attacks using stolen FTP access info
Emerson,
Drinks are on me if ever you visit Montreal. Thanks for all the detailed help in this thread mate. |
|||||||
#84
|
|||||||
|
|||||||
Re: Warning: Iframe based attacks using stolen FTP access info
Emerson beat me to it, but yes if you see anything other than
127.0.0.1 localhost in there, that you did not manually put in for whatever reason then your DNS is compromised meaning everything is routed through "hacker's network" so they can do alot of evil things, DNS hacking i believe is what its called but just take a quick look on any machines you use to access your site, specially any using FTP or Admin just to be sure. Be concerned if you see something like this where 111.111.111.111 is a random IP you dont recognize: 111.111.111.111 yourdomain.com or 111.111.111.111 * |
|||||||
#85
|
|||||||
|
|||||||
Re: Warning: Iframe based attacks using stolen FTP access info
Quote:
|
|||||||
#86
|
|||||||
|
|||||||
Re: Warning: Iframe based attacks using stolen FTP access info
Spybot WILL put entries in your hosts file, so don't freak if you have that program installed and see extra entries
__________________
Padraic Ryan Ryan Design Studio Professional E-Commerce Development |
|||||||
#87
|
|||||||
|
|||||||
Re: Warning: Iframe based attacks using stolen FTP access info
I think i have got all the files cleared but still my web page is white??
Would this be the cache on my server or something any ideas?
__________________
X-Cart version 4.1.3 Blank DVD Blank Cd Blank Media Dvd Case http://www.discworlduk.co.uk |
|||||||
#88
|
|||||||||
|
|||||||||
Re: Warning: Iframe based attacks using stolen FTP access info
my guess - yes, cache. Clear your templates_c and let them rebuild. Either that or you have an error in PHP somewhere and it's not building the page.
__________________
Conor Treacy - Big Red SEO - @bigredseo Search Engine Optimization & Internet Marketing - We Bring Your Website Out Of Hiding! If you can't be found on Google, Bing or Yahoo, you pretty much don't exist on the Internet. Omaha SEO Office with National & Local SEO Services Hourly Consulting - great for SEO Disaster Recovery, Audits and DIY Guidance |
|||||||||
#89
|
|||||||
|
|||||||
Re: Warning: Iframe based attacks using stolen FTP access info
My site was compromised, and 2 things that were different on October 20th - I use PcCillin and run scans 2 times a week, with automated updates at any given time. On october 20th, I got the following:
PAK_Generic.001 on October 20. 2008 Unable to Quarantine Aliases: Generic, Mal/Packer, W32/Sality.M, Win32/Puper.8ke!Trojan, Win32/Sality!generic I followed the file location immediately but could not find the file. Did a full scan (about 6 hours) and the file was then found and properly quarantined. I deleted it immediately and emptied the TrashBin (for whatever that's worth) then today, could not log in to ftp. I also noticed that the new version of PCCillin Trend Micro Internet Security shuts down when it's updating automatically, which is utterly stupid as it leaves your pc unprotected. Don't know how to change that though, it's a serious flaw, but I am calling them now. On 10/10 I started to get blank page syndrome in admin, don't know if it's related. The other thing that is new for me is Twitter. Is anyone else using Twitter? Since it works as IM does it could be used to deliver viruses, couldn't it? I also contacted x-cart helpdesk as they had the log in for my ftp. A million thanks to Emerson for helping me with this. Emerson, you rock! EWDhosting is the best!
__________________
Vera B 4.4.5 CFLSystems.com mods, Kosmos eBay Integration, Feed Manager Pro, custom mods, BCSEngineering Mods, CDSEO PRO Hosting by EWDHosting - The best home for your x-cart. |
|||||||
#90
|
|||||||
|
|||||||
Re: Warning: Iframe based attacks using stolen FTP access info
Quote:
|
|||||||
|
Thread Tools | |
|
|
|
|||
X-Cart forums © 2001-2020
|