1 Answer
Incase if it is a Base64 injection scripts use the following to inspect
find /var/www/html -name "*.php" | xargs -I{} sed -i '/<?php eval(gzinflate(base64_decode(/d' {};
Your Answer
x