Skip to Main Content

Hacked osCommerce Store Cleanup

If your osCommerce store has been hacked we can clean it up for you, attempt to determine how the store got hacked (see an example of how that is done), and help you to secure it against a future hack. Hiring us will ultimately save you time and money over doing it yourself or hiring someone who doesn't know what they should be doing (which seems to be pretty common based on the number of times we are brought in to re-clean a website after another company has cleaned it up).

Please feel free to contact us to receive a free consultation on how you can best deal with your hacking issue. If you are not sure if your store is hacked, we can perform a free check to confirm for you if your store is in fact hacked.

The hack can be due to an osCommerce installation without the admin secured, compromised FTP credentials, an insecure web host, or a vulnerable add-on.

Some of the most prevalent activities preformed by the malicious code are inserting hidden spam links in the store's pages, creating spam pages, redirecting visitors to another website, and attempting to install malware on the computers of visitors to the store.

The hacks can be hidden in a variety of places and might only be active when the store is visited in a particular way. The hacks may be located in osCommerce files, extensions, themes, or the database. The most common form of malware infection places an iframe or JavaScript code into the store's pages. When the code inserts hidden spam links, these links may only be in the page if the request comes from a crawler for a search engine. When the code redirects a visitor or attempts to infect a visitor's computer with malware, the attempt may only occur if a visitor comes to the store through Google or another search engine. When coming to the store directly, it will appear to be normal.

To clean up the store, we will review the store's files and database for code inserted during the hack and remove that code. Checking and cleaning the store's files takes a few hours. We will also work with you to secure the store against a future hack. If your store has been hacked due to poor security at your web host we can move your website to a new host as part of the service. If your store has been removed from the Google search engine we will assist you in filing a reconsideration request. If your store was distributing malware and has been flagged and blocked, we will request a malware review from Google and or Bing to have the warning removed. It should take no more than a day to be removed from Google's malware blacklist after a review has been requested.

Price:

$200 USD, payment is due after the store has been cleaned up and we accept payment by credit card, debit card, or eCheck through PayPal in a number of currencies.


Related:

Tools

Resources