GoFuckYourself.com - Adult Webmaster Forum - View Single Post - PHP Injection?!?! http://valueaffiliate.net/abp

scouser · 10-05-2011, 05:25 AM

do a search for things like 'exec' or 'base64_decode'

ie
grep -r 'exec' ./
in ur root dir.

anything that has that and things like base64_decode() is often a hacked script. sometimes searching for file_get_contents or curl() will find stuff too. if it is all grouped together and not clear/tidy code make sure to give it a good look and work out what its doing.

10-05-2011, 05:25 AM
scouser marketer. Industry Role: Join Date: Aug 2006 Location: bcn Posts: 2,280	do a search for things like 'exec' or 'base64_decode' ie grep -r 'exec' ./ in ur root dir. anything that has that and things like base64_decode() is often a hacked script. sometimes searching for file_get_contents or curl() will find stuff too. if it is all grouped together and not clear/tidy code make sure to give it a good look and work out what its doing.