Hack recovery -- suspicious code in database

I've been recovering from a recent hack. I have deleted all files and reinstalled Joomla and all extensions, including Mobile Joomla with their latest version. As part of this, I searching the database for anything the hackers may have left behind and I've found some suspicious in the mj_amdd table:


('www.voxtel.ru/UAProf/Voxtel_BD40.xml', 'bot', '{"type":"mobile","markup":"xhtml","screenWidth":120,"screenHeight":140,"imageFormats":["png","jpg","gif","wbmp"]}')


Can you tell me what this table is used for and whether the code above is normal or not. And if not, how do I get rid of it?

Hi.

Have you tried the clean install i mean from creating a new database from scratch for your Joomla site?

Please send us more details like screenshots of that table to our email support​@​mobilejoomla.com

Best,

Mobile Joomla! Support

AMDD contains data from latest open version of WURFL database (to support feature phones and other old devices that are very rare nowadays), and there are 7 entries in the database relates to VOXTEL phones that used UAProf URL for User-Agent header as well. So, it is not related to hack.

How to restore data from previous backup?

Hello protomik,

Please tell us more information about how do you want to restore your data? Is it a mysql database ? Can you provide an example or a screenshot?

Best,

John Mark C.
Mobile Joomla! Support