help: almost whole server's index.php get injected

seachen

Verified User
Joined
Feb 3, 2007
Messages
491
yesterday my whole server's index.php get injected.

hacker put google ads into the bottom part as below:

<center><script type="text/javascript"><!--
google_ad_client = "pub-3111961132392974";
/* 728x90, 创建于 10-11-11 */
google_ad_slot = "7686623564";
google_ad_width = 728;
google_ad_height = 90;
//-->
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script></center>

may i know how they do it?
 
Sure, you may. In case you don't enough skill to analyze logs, you'd better hire someone.

There can be PHP Shells, Backdoors on your server. Or your password (password of any client) to SSH/FTP was stolen.
 
Back
Top