Originally posted by magnetic1
hmm, explain a "php code" like
You must login or register to view this content. ? i don't know what u mean, well google is my friend.
Do you have any idea of what you're talking about?
I don't have any idea what you mean through most of your post, thanks to the interesting use of grammar and spelling you have implemented.
Anyways, if you find a site that you believe is a "phishing site" (meaning its trying to steal user information by claiming to be an organization that it is not), then your best, most legal course of action is to report them. You can report them
You must login or register to view this content. and
You must login or register to view this content.. You're obviously not required to (but are encouraged) to report phishing scams, due to the Identity Theft Penalty Enhancement Act, in the United States phishing scams typically result in a minimum two year sentencing.
Now, if you wanted to "hack the hacker", by attempting to scan the website and gain the usernames/passwords for yourself, you could attempt a variety of directory traversal attacks, or use a script to quickly scan through a website (such as a web spider script).
If you have found the phishing scam on your own website, take steps to attempt to reverse-engineer and backtrack the script, report the scam, and delete the script. Then, attempt to further secure your server to prevent from any additional attacks.