Possible Duplicate:
My server's been hacked EMERGENCY
My user account on a shared hosting server got hacked and overwrote every PHP with this at the bottom....
eval(gzuncompress(base64_decode( etc etc
Luckily I think I know the script that was vulnerable and I have a backup that is free from all bad files. So, I want to rsync it and replace the bad stuff, will this work?
rsync -rltpqz --delete username@remotehost.com:dir /users/home/username/
Will "-rltpqz --delete" delete all the local files and replace them with remote versions?
Are there any other steps to follow?
