社区应用 最新帖子 精华区 社区服务 会员列表 统计排行 银行

  • 11793阅读
  • 2回复

zencart报高危漏洞,ixwebhosting首先告警并处理完毕

级别: 管理员
发帖
8532
金币
2762
威望
3231
贡献值
0
元宝
0
我们收到美国ixwebhosting公司告警,zencart报高危漏洞,成为黑客攻击目标。ixwebhosting帮助我们的客户检查,扫描并处理了漏洞和攻击,这样的服务,客户也很满意,向该公司致谢。

[font=arial;]点击此图片链接进入ixwebhosting官方网站获取优惠

[font=arial;]




Zen Cart application has recently become a rising target for hacking attempts and attacks. Using known exploits of outdated installations, people are uploading and executing malicious code into the victim website.  These malicious injections allow them to steal passwords and private information from people visiting your site, they also spread malware and viruses over the Internet, turn sites into blackhat SEO doorways as well as many other unfortunate things.


It has come to our attention that one or more of your sites hosted with us with a Zen Cart application has recently became a target of a hacking attempt and we regret to inform you that the attempt was successful. It allowed the attacker to upload a set of hacking tools to your website and possibly use it for malicious purposes. To prevent this and any further damage, we proceeded with the following steps:
1. The admin area of your Zen Cart application has been password-protected. You may find new password in the text file located at .zenprotect/pass_plain.txt in your FTP root folder. We recommend downloading this file and erasing it from the server ASAP. If you'd like to change password later, you can use corresponding feature of the WebShell FTP file manager. Note that you will still need to use your old password to access Zen Cart admin area after passing through webserver's password prompt.
2. We scanned your account and cleaned up all known patterns of hacker tools. This should not affect any valid code and pages in any way.


QQ: 378890364 微信:wwtree(省短信费) 紧急事宜发短信到0061432027638  本站微博:http://t.qq.com/wwtree QQ群:122538123
级别: 管理员
发帖
8532
金币
2762
威望
3231
贡献值
0
元宝
0
只看该作者 沙发  发表于: 2010-02-07
大意:

zencart最近成为黑客的攻击目标,用早期的几个漏洞,他们上传一些可执行的恶意代码到受害者的网站, 然后偷密码,访客的私人信息,还开后门,加链接等。


你的网站受到了攻击,非常遗憾,我们发现攻击是成功的。我们已经采取了以下步骤阻止和防止类似事件

1  管理区被密码保护。

2 我们扫描并清理了所有已知的黑客工具,代码,应该不会影响你的网站正常功能。

QQ: 378890364 微信:wwtree(省短信费) 紧急事宜发短信到0061432027638  本站微博:http://t.qq.com/wwtree QQ群:122538123
级别: 论坛版主
发帖
21
金币
7
威望
6
贡献值
0
元宝
0
只看该作者 板凳  发表于: 2010-07-16
一流站长http://16www.com
描述
快速回复

您目前还是游客,请 登录注册
批量上传需要先选择文件,再选择上传