Mysterious origin of mismatched AdminLoginController.php file in 1.7.7.4?

[watou]

I am wondering if anyone has seen the situation where an AdminLoginController.php file that is from a different version of PrestaShop has somehow "magically" appeared in their controllers/admin directory?  Is there a vulnerability exploited in the wild that has done this?  Or there is some small chance that I'm entirely forgetting I had done so, but frankly there is just no way I can recall doing that. 

I detected the problem by experiencing the "admin login loop" symptom and hunting for oddities.  Replacing the above file with the official 1.7.7.4 version of the file has resolved the "admin login loop" problem, but where that file came from is the real mystery.  Thank you for any ideas.

[JBW]

Yes, this file is usually infected /changed by a Trojan/Virus. It is collecting and sending your login credentials to an external server.

Try this cleaner script:

 

[watou]

2 hours ago, JBW said:

Yes, this file is usually infected /changed by a Trojan/Virus. It is collecting and sending your login credentials to an external server.

Try this cleaner script:

 

I am very grateful for your response.  This was exactly what was needed.