malicious code in parse_string.php

11.04.2014 21:22
#1
hbergold
Joomshopping forum user no avatar
Name: Henning Bergold
31.05.2013
Posts: 23
Quote
malicious code in parse_string.php

I had a complete crash today in our web site due to a malicious script. After recovering, the parse_string.php file from joomshopping appears to be suspect.
After checking, I found a strange code:

function getPSencodersf(){return "ZnVuY3Rpb24gY2hlY2tMaWNlbnNlKCl7JGM9JkpTRmFjdG9yeT….

Deleting this code makes the joomshopping site unusable, the categories don’t show up. An older backup of this parse_string.php file does not have this code.

What could be wrong?


Joomla: 2.5.2
JoomShopping: Version 3.7.1
Website Url: www.puntoCAD.com
 
12.04.2014 10:00
#2
webdesigner
(Support Team)
User webdesigner
Name: Admin
05.08.2010
Posts: 16513
Quote
Aw: malicious code in parse_string.php

use new version joomshopping

 
12.04.2014 22:02
#3
hbergold
Joomshopping forum user no avatar
Name: Henning Bergold
31.05.2013
Posts: 23
Quote
Aw: malicious code in parse_string.php

Ok, but how do I do this. From where should I download? Would I loose all my configuration of the shop?
Thanks

 
12.04.2014 22:08
#4
webdesigner
(Support Team)
User webdesigner
Name: Admin
05.08.2010
Posts: 16513
Quote
Aw: malicious code in parse_string.php

update step to step.

BUT - function getPSencodersf not virus.

 
12.04.2014 22:52
#5
hbergold
Joomshopping forum user no avatar
Name: Henning Bergold
31.05.2013
Posts: 23
Quote
Aw: malicious code in parse_string.php

Ok thanks, I just did. Everything ok.

I also have the Products Detail Tab extension installed. Should I update this too?

Henning

 
Copyrights MAXXmarketing GmbH. All Rights Reserved