Thread:Project:Support desk/bin/template.php/reply (5)

That only is one of the steps you need to take and it alone does not resolve the issue.

Basically you have to find out, how this file could get on your server and fix the underlying problem, which enabled the attacker to place it there:
 * Do you have a security problem somewhere in MediaWiki? Are you maybe running an old version with known security holes?
 * Is another software on the server vulnerable, which allowed the attacker to put that file there?
 * Or maybe something different: Has the access data of your FTP account been stolen so that the attacker just connected via FTP and loaded up the file that way?
 * Or....

This is tedious work, but if you do no trace how it got there and fix this problem, you will most probably be compromised again some time in the future.