Hello,
Recently I discovered an attack on my joomla site where php files were placed in the tmp path. I have now been on a mission to look for under-cover attack objects. One suspicious object search that I do is to look for php scripts without JEXEC or die. I found a file named .alias76.php in a folder under fabrik_visualization\calendar\language\lt_LT .
Is there a reason this php file does not include the JEXEC or die command? Is there a way to confirm that it is legitimate?
Thanks so much,
VickiD
Recently I discovered an attack on my joomla site where php files were placed in the tmp path. I have now been on a mission to look for under-cover attack objects. One suspicious object search that I do is to look for php scripts without JEXEC or die. I found a file named .alias76.php in a folder under fabrik_visualization\calendar\language\lt_LT .
Is there a reason this php file does not include the JEXEC or die command? Is there a way to confirm that it is legitimate?
Thanks so much,
VickiD