php - About Removing Malware Scripts

Question

Welcome To Ask or Share your Answers For Others

php - About Removing Malware Scripts

posted Oct 24, 2021 in Technique[技术] by 深蓝 (71.8m points)

php - About Removing Malware Scripts

I am working on a php website and it gets regularly infected by Malware. I've gone through all the security steps but failed. But I know how it every time infect my code. It comes at the starting of my php index file as following.

<script>.....</script><?

Can anybody please help me how can I remove the starting block code of every index file at my server folders? I will use a cron for this.

I already gone through regex question for removal of javascript malware but did not found what I want.

See Question&Answers more detail:os

与恶龙缠斗过久,自身亦成为恶龙；凝视深渊过久,深渊将回以凝视…

1 Reply

深蓝 · Answer 1 · 2021-10-23T18:25:51+0000

You should change FTP password to your website, and also make sure that there are no programs running in background that open TCP connections on your server enabling some remote dude to change your site files. If you are on Linux, check the running processes and kill/delete all that is suspicious.

You can also make all server files ReadOnly with ROOT...

Anyhow, trojan/malware/unautorized ftp access is to blame, not JavaScript.

Also, this is more a SuperUser question...

Categories

php - About Removing Malware Scripts

php - About Removing Malware Scripts

Please log in or register to add a comment.

Please log in or register to reply this article.

1 Reply

Please log in or register to add a comment.

Just Browsing Browsing

Most popular tags