All my Laravel applications with strange codes..

@gych I think that's it... everyone is on the same server... I deleted all the unknown codes and files... I just don't know if they will come back later.

@jon4sf The infection can sit deep within your files.

Do you have backups of all your sites? Which hosting environment do you use? Vps, shared host, ...

@gych shared host HOSTGATOR....I also use the old version of Laravel, I believe it is version 8.... I'm migrating to version 10.

@jon4sf They will come back later. Deleting stuff isn’t enough. The fact that it’s there to begin with means someone somehow gained access to your server at some point. If you change nothing other than deleting the code they injected, they can gain access to your server in the same way again.

Since you say you’re on shared hosting, there’s a good chance you’ve uploaded your app in an inherently insecure way, exposing sensitive information to the world, and that’s how your site was breached.

@jon4sf If you've backups, delete everything and deploy again. Change all passwords and make sure that your application is deployed correctly.

On shared hosting malware can also spread between mutltiple users. Its worth to think about moving to a better hosting solution instead of using shared host.

@gych Thank you for the help, I'm updating the system, I also have backups... I will do this. Thanks again.

@kokoshneta It was what I thought... I appreciate your response.

@jon4sf No problem :) if you have more questions don't hesitate to reach out