需要一些帮助来恢复受到攻击的Wordpress网站

时间:2017-09-16 00:57:07

标签: wordpress security

我很幸运能够在我的网站上接受黑客入侵。根据webhost,黑客为了发送垃圾邮件而创建了多个电子邮件帐户。

我相信cPanel密码没有受到损害,因为我使用的是包含乱码的唯一密码。

请快速查看以下恶意软件扫描,并告诉我是否有人能够确定黑客的原因,以便我可以更新或删除相关插件:

  

FILE HIT LIST:{HEX} php.generic.malware.444:   /home/removed/public_html/wp-content/plugins/akismet/akismet.php   => /usr/local/maldetect/quarantine/akismet.php.19219493 {HEX} php.generic.malware.442:   /home/removed/public_html/wp-content/cache/autoptimize/qtwckryc.php   => /usr/local/maldetect/quarantine/qtwckryc.php.210$ {HEX} php.base64.v23au.186:   /home/removed/public_html/wp-content/cache/tmp/favicon_0d59b4.ico   => /usr/local/maldetect/quarantine/favicon_0d59b4.ico.96$ {HEX} gzbase64.inject.unclassed.15:   /home/removed/public_html/wp-post.php =>   /usr/local/maldetect/quarantine/wp-post.php.1750329931   {HEX} gzbase64.inject.unclassed.15:   /home/removed/public_html/wp-post.php =>   /usr/local/maldetect/quarantine/wp-post.php.223812868   {HEX} php.generic.malware.442:   /home/removed/public_html/nkwpabqu.php =>   /usr/local/maldetect/quarantine/nkwpabqu.php.686111002   {HEX} php.generic.malware.444:   /home/removed/public_html/removed/wp-content/themes/zerif-pro/content-large.php   => / usr / local / maldetect / quarantine / conte $ {HEX} php.generic.malware.442:/home/removed/public_html/removed/menu.php =&gt ;   /usr/local/maldetect/quarantine/menu.php.321404278   {HEX} php.nested.base64.563:   /home/removed/public_html/removed/.qidb/sma.php =>   /usr/local/maldetect/quarantine/sma.php.2032931861   {HEX} php.nested.base64.563:   /home/removed/public_html/removed/.qidb/ini_slide-menues.php   => /usr/local/maldetect/quarantine/ini_slide-menues.php.28531$ {HEX} php.generic.malware.444:   /home/removed/public_html/wp-includes/class-phpmailer.php =>   /usr/local/maldetect/quarantine/class-phpmailer.php.230442$   {HEX} php.generic.malware.444:   /home/removed/public_html/wp-includes/class-wp-image-editor-imagick.php   => / usr / local / maldetect / quarantine / class-wp-ima $ {HEX} php.generic.malware.444:   /home/removed/public_html/wp-includes/Requests/Utility/FilteredIterator.php   => / usr / local / maldetect / quarantine / Filtered $ {HEX} php.generic.malware.442:   /home/removed/public_html/removed/wp-includes/certificates/bikkduoa.php   => / usr / local / maldetect / quarantine / bi $ {HEX} php.generic.malware.442:/ home / 已移除 / public_html / 已移除 / wp-includes / images /smilies/tjrrepex.php   => / usr / local / maldetect / quarantine / $ {HEX} php.generic.malware.442:/home/removed/public_html/removed/gallery.php =>   /usr/local/maldetect/quarantine/gallery.php.491312761   {HEX} php.nested.base64.563:   /home/removed/public_html/.well-known/pki-validation/ini_db_model.php   => /usr/local/maldetect/quarantine/ini_db_model.php$ {HEX} php.generic.malware.442:   /home/removed/public_html/wp-admin/user/bwztkznu.php =>   /usr/local/maldetect/quarantine/bwztkznu.php.682430871

非常感谢你看到这个!

1 个答案:

答案 0 :(得分:0)

从这些日志中找不到黑客的原因,可能是一个简单的密码暴力攻击或XSS漏洞 - 但是这里有一些最佳实践会使未来更难破解:

  1. 删除所有受影响的文件和虚假电子邮件帐户(这看起来已经完成)
  2. 确保所有插件和wordpress都符合最新版本
  3. Install Better WP Security - 按照设置向导
相关问题
最新问题