the same problem here..with godaddy hosting .. but I found something encrypted and we can decrypt with unphp.net … here are one of this files … http://lupsescu.com/malware.zip and just take a look in your /tmp directories … there this thing stores lots of SESS_ files and sess_ thanks and hope we can repais this shit … scan your web server for this files : and folders
hostdata3.php
post.php
_MACOSX/
meta/
confg.php
context.php
cros.php
onleinw.php
wpcallback.php
-
This reply was modified 9 years, 7 months ago by lupsescu.
