SOLVED It is possible that web fonts generate PHP file?
-
-
- Riccardo
- Elite Rocketeer
- Posts: 1082
- Thanks: 29
-
After several similar situations with infections on several websites, all developed on the basis of the Rockettheme templates, I want to make a question to the developers.
Forgive me, but my web programming experience coming from the old DOS and the most recent Microsoft Windows Server Hosting (websites in FrontPage Server, Sharepoint Designer and Expression Web, html, asp, aspx) of which I was the only Italian MVP for 8 years. I do not have in-depth expertise of LAMP and PHP (I have no idea of the permit system) and I apologize.
I want to ask whether it is possible that one of the files, that handles the web fonts, is able to generate and write on the website a PHP file (Backdoor.PHP.AYA).
Analyzing the activity log, verified IP - time and date, it would seem that the creation of the PHP file, that include the Backdoor.PHP.AYA, occurred immediately after installing the web font. - Riccardo Rausch
www.rausch.it
-
-
-
- MrT
- Preeminent Rocketeer
- Posts: 101084
- Thanks: 13484
- Web Designer/Developer
-
Highly unlikely, no I don't believe that is possible.
Regards, Mark. - Please search forums before posting. Please make sure your post includes the version of the CMS you are using and a link to the problem. Annotations on screenshots can also be helpful to explain problems/goals. Please use the "secure" tab for confidential information.
-
-
-
- Riccardo
- Elite Rocketeer
- Posts: 1082
- Thanks: 29
-
I have cleaned dozens of websites that present some unknown files (spam and zombie malware). I've made me so a idea on the system that the hackers have used to hide his files in the structure of joomla.
The installation of the web font is not one of the constants that I noticed. So I believe that MrT is right and that these files are not responsible for the presence of malware. -
The following users have thanked you: MrT
- Riccardo Rausch
www.rausch.it
-
Time to create page: 0.041 seconds