It sure looks like there is a security hole in those servers, perhaps it's a
bug on some web software running in them (Wordpress, Joomla, phpMyAdmin...)
which allows the attacker to modify files writable by the web server.

Review the last modified date of the affected files and then search for that
time in your web server logs, it might give you a hint of what's going on.


On Thu, Feb 12, 2009 at 3:40 PM, Szymek Przybył <>wrote:

> I think that isn't a server fault - this code was appeared on two my sites,
> one of my client (on the same hosting which I used - and
> on site of my client on the other server (
> cheers!
> szymek
> _______________________________________________
> PHPTAL mailing list
PHPTAL mailing list

Reply via email to