(2015-08-24, 07:51 AM)Thomas131 Wrote: [ -> ]Hello!
Just out of interest, I decoded the file: http://pastebin.com/HLDjRfEN
Thomas131
hello
thanks for this any help from the above to not going the spam from it
how can i find either the plugin or mybb file is having this issue
Do you know how exactly this backdoor is getting uploaded to your forum?
sorry dont have much knowledge about it but daily its keep getting upload to random folders
anyone here provide paid support to this issue please pm me
I would contact your host for help and they might be able to dig into some logs to see if they can figure out what exactly is happening.
In the meantime, run a File Verification in the ACP and if there are any changed files that you didn't know have changed (i.e. you didn't make a core edit yourself), then read through each of the respective files to see if there's any code that just looks out of place (such as a whole bunch of random unintelligible strings).
Also, run an antimalware scan on your computer, then change all site passwords (cPanel and any other administrative ones).
You should probably configure your web server to serve any file with php as an extension in your uploads folder as text/plain.
(2015-09-02, 05:05 PM)laie_techie Wrote: [ -> ]You should probably configure your web server to serve any file with php as an extension in your uploads folder as text/plain.
from admin panel or server settings let me know