dongzai3917 2017-01-20 08:10
浏览 38
已采纳

所有php文件中都添加了奇怪的代码

Please help me.

all of my WordPress sites has been added some strange code in all php files(core, theme, plugin..) I've spent a lot of time to delete it, but it keep coming back. I did not install anything insecure but I'm not sure because I'm working with a lot of people so really don't know what have happened?

The strange code looks 

  "<?php $eqrqdvc = '.2`hA  x27pd%6<C   x27pd%6|6.7eu{66~67<&o! x24-    x24y7   x24-    x24*<!  x24-    x24gps)%j>1<%j=tj{fpg)% x24-    xssbz)#44ec:649#-!#:618d5f9#-!#f6c68    x24-    x24-tusqpt)%z-#:#*  ......"

all of my sites on the same server are in this trouble at the same time, do you think the cause maybe on sever or can possibly in one site?

  • 写回答

2条回答 默认 最新

  • douju4278 2017-01-20 08:16
    关注

    You have been hacked.

    Although you are cleaning all these files, you have a security hole that can be exploited again and again.

    The best thing you can do is to backup your database delete everything and then perform a clean install, with up-to-date plugins.

    Of course you will need to change all passwords and monitor the site.

    If you want to dig into the origin of the infection, I suggest to start looking into your log files. Paying special attention to the POST requests. If you have enough history you will probably find something interesting.

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(1条)

报告相同问题?

悬赏问题

  • ¥15 centos7.9 IPv6端口telnet和端口监控问题
  • ¥120 计算机网络的新校区组网设计
  • ¥20 完全没有学习过GAN,看了CSDN的一篇文章,里面有代码但是完全不知道如何操作
  • ¥15 使用ue5插件narrative时如何切换关卡也保存叙事任务记录
  • ¥20 海浪数据 南海地区海况数据,波浪数据
  • ¥20 软件测试决策法疑问求解答
  • ¥15 win11 23H2删除推荐的项目,支持注册表等
  • ¥15 matlab 用yalmip搭建模型,cplex求解,线性化处理的方法
  • ¥15 qt6.6.3 基于百度云的语音识别 不会改
  • ¥15 关于#目标检测#的问题:大概就是类似后台自动检测某下架商品的库存,在他监测到该商品上架并且可以购买的瞬间点击立即购买下单