How can I find malware script running in server/phpfiles/databse etc

Discussion in 'Malware Help (A Specialist Will Reply)' started by john12345, Apr 3, 2010.

  1. john12345

    john12345 Private E-2

    Hi,
    I am trying to buy one website( in PHP & MYSQL -> creates Business cards).
    But Now I came to know that the website was attacked by MALWARE last year.
    Now I am little worried about why and how threats appeared in website.

    Could you please suggest me how can I test the Malware status in this web-software.
    I am worried if the malware script is still there in some files as hidden.
    I would like test everything before i buy.
    Plese suggest me the
    tools and techniques that i need to apply malware testng and other technical testing.
    Your help and suggestions would be great. Specailly would be great If i could get technique
    to test malware threats/script around the PHP files.

    Thank you.
    John, CT
     
    john12345, Apr 3, 2010
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to Major Geeks!

    Problems like this are really more of a vulnerability issue and not truly malware. How people write their website code, how old/unupdated the software they write it with, and how secure the servers that host it are really the areas to look at. Issues here are commonly referred to as code injection ( see: http://en.wikipedia.org/wiki/Code_injection ) The things we do in this forum are not going to find problems in your code. None of these malware scanners will since they are not design for this purpose.

    You are going to need to have a very good webpage developer check the code for security issues and you need to verify that all software being used has been updated to include all security patches. In addition, you need to make sure that the server hosting the website also has been fully updated.

    Also since you stated it has been previously hacked, you should attempt to find out how it was hacked last time so you can verify that they security issues have been resolved.


    A tool like things like below:
    and any other similar tools may be of use since they are designed for this specific purpose. I cannot personally comment on them since this is not in the realm of thing we look at in the malware fight. You may want to try posting specific questions in the Software Forum to look for other opinions.
     
    Last edited: Apr 4, 2010
    chaslang, Apr 4, 2010
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds