https://proxy2.de/forum/posts/list/3.php JForum - http://www.jforum.net
I have found that there is a file called config.inc.php which has the hacked message in it and it seems that the files in the guestbook directory are calling this page. I don't know what should be there and what shouldn't.

Is there a way of finding out which files have been tampered with and which are still originals.

Regards

harlequeen]]> https://proxy2.de/forum/posts/preList/6408/22586.php https://proxy2.de/forum/posts/preList/6408/22586.php GMT
Download the guestbook and replace every file except admin/config.inc.php]]> https://proxy2.de/forum/posts/preList/6408/22587.php https://proxy2.de/forum/posts/preList/6408/22587.php GMT