Malware in file 68564.php #2
Comments
|
It definately is a php script that collects info about the site it is running on and sends it to another page. Definately remove the file. It is in images and in tfiTutorial/images remove it from both places. |
|
Hey guy, thanks for chiming in on this! Unfortunately, this has been long since maintained. And has since been abandoned by myself due to the the age of the script. I wrote this in 2011! Can you believe that?!?!?! For future reference, procedural PHP should no longer be used, and a framework would be a better suite for a game like this, so that you can leverage OOP programming techniques. I recommend Laravel all day. Feel free to reach out if you want any tips, or have any questions. I have been meaning to archive this; and I will do so here shortly, along with a readme update. By no means, should this code be hosted without heavy modification. It doesn't even leverage PDO. 2011 was a different time... Anyways, I hope any future devs, or devs-in-progress, that stumble across this project can learn from this, or at least admire what we had to do back in the day while OOP was coming to existence. I've been using PHP since 2005... still use it today and love the direction it is going. Again, I recommend anyone coming here to rewrite this in Laravel; or another language if you so please. I have plans myself to make another game, but it will be with Laravel/Inertia and Vue. And it will be a private repo, so don't plan on seeing anything public regarding this in the recent years... maybe some packages... who knows 🤷♂️ Cheers! 🍻 |
I believe the file 68564.php in images/ is a PHP backdoor.
It tries to connect to, and execute code from,
ads2 (dot) phpsearch (dot) cn. But it seems like the attacker can change the server dynamically based on the request.I recommend removing this file.
Anyone using this project should scan their web site for further infections.
The text was updated successfully, but these errors were encountered: