Quote:
Originally Posted by TurboB
Download all files of Robo from server to PC and compare with installation files using WinMerge.
Install on your site some tool like Wordfence and scan it.
|
That will only cover the files and not the database. It's more likely that it's SQL injection. The install files are unlikely to be changed as the web-user of the server is unlikely to actually have write access to the script's files.
I'd do a search in the whole db for strings like "%script%"