goodboy88 Posted August 24, 2011 Share Posted August 24, 2011 Hi my web store had been infected with Trojan.JS.Redirector.qb show up by Kaspersky. In the Kaspersky report it shows the object are: http://vipaquarium.ka.hn/showthread.php?t=86311450//showthread http://erabaglanti.ka.hn/showthread.php?t=86311450//showthread Symptom: 1) Categories not show when browse into individual product. 2) Under the individual product, the picture isn't display correctly when click on it. Example when click on it, it display only the picture instead of pop up a small window to display the picture bigger. How to delete this Trojan? Which is the file is infected? For your info i'm using 1.4.3. Link to comment Share on other sites More sharing options...
indus Posted August 24, 2011 Share Posted August 24, 2011 Hi my web store had been infected with Trojan.JS.Redirector.qb show up by Kaspersky. In the Kaspersky report it shows the object are: http://vipaquarium.ka.hn/showthread.php?t=86311450//showthread http://erabaglanti.ka.hn/showthread.php?t=86311450//showthread Symptom: 1) Categories not show when browse into individual product. 2) Under the individual product, the picture isn't display correctly when click on it. Example when click on it, it display only the picture instead of pop up a small window to display the picture bigger. How to delete this Trojan? Which is the file is infected? For your info i'm using 1.4.3. http://www.prestashop.com/forums/topic/125798-footertpl-vulnerability/ Many users have the problem.Delete the strange php files in upload and download folder if you see any other than index.php. Check your themes/footer.tpl for any javascript at the bottom and delete it. And only after you have done the above,Change admin password of back office,employee passwords and database passwords. Link to comment Share on other sites More sharing options...
x3n0m0rph Posted August 24, 2011 Share Posted August 24, 2011 I have the exact same problem. It started today, around 10:00. My website is offline for desinfection now.. I think there is a prestashop vulnerability. Can we have any help from the Prestashop team? Any details about this trojan? Thx. Link to comment Share on other sites More sharing options...
indus Posted August 24, 2011 Share Posted August 24, 2011 I have the exact same problem. It started today, around 10:00. My website is offline for desinfection now.. I think there is a prestashop vulnerability. Can we have any help from the Prestashop team? Any details about this trojan? Thx. Please follow that link in my previous post.The developers seem to have found the problem and the solution and they will announce it soon.They are also actively posting in that thread when it was first reported. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now