[請益] Wordpress網站不斷被駭
最近開我的Wordpress網站會讓Avast和小紅傘掃到木馬
後來發現是我的functions.php結尾被加了幾行<script>
只要把那幾行移除網站就恢復正常
不過重點是移除完,過沒多久那幾行又會被加上去
實在不知道該怎麼辦,網站流量最近跌得很誇張
FTP密碼換過了,還是繼續發生
懇請專人給予指點。 <(_ _)>
PS. functions.php多出來的幾行長這樣:http://pastebin.com/zkduz4jA
--
※ 發信站: 批踢踢實業坊(ptt.cc)
◆ From: 74.176.94.13
推
02/11 23:48, , 1F
02/11 23:48, 1F
※ 編輯: sideshowbala 來自: 74.176.94.13 (02/11 23:59)
→
02/12 02:29, , 2F
02/12 02:29, 2F
推
02/12 11:55, , 3F
02/12 11:55, 3F
→
02/12 11:55, , 4F
02/12 11:55, 4F
→
02/12 11:56, , 5F
02/12 11:56, 5F
推
02/12 12:31, , 6F
02/12 12:31, 6F
→
02/12 12:31, , 7F
02/12 12:31, 7F
→
02/12 14:40, , 8F
02/12 14:40, 8F
→
02/12 14:42, , 9F
02/12 14:42, 9F
→
02/12 14:42, , 10F
02/12 14:42, 10F
→
02/12 14:43, , 11F
02/12 14:43, 11F
→
02/12 14:44, , 12F
02/12 14:44, 12F
→
02/12 14:45, , 13F
02/12 14:45, 13F
→
02/12 14:46, , 14F
02/12 14:46, 14F
→
02/12 14:46, , 15F
02/12 14:46, 15F
推
02/12 18:12, , 16F
02/12 18:12, 16F
推
02/12 21:39, , 17F
02/12 21:39, 17F
推
02/12 22:36, , 18F
02/12 22:36, 18F
→
02/13 10:15, , 19F
02/13 10:15, 19F
→
02/13 10:15, , 20F
02/13 10:15, 20F
雖然好像有點聊開了,
不過還是附上一下自己的解決辦法:
第一個是把感染的functions.php用原本主題的functions.php替代,
(後來發現原來多出來不只幾行,多了一兩頁吧 XD)
我想應該是這步解決大部分問題。
不過執行上步之前,我也有下載一個WP外掛叫HTML Purified,
這是防留言系統的漏洞的樣子..(對不懂coding的人只好依賴外掛 XD)
但我想最主要的解決方法應該還是第一步。
希望接下來不會再發生問題了。
※ 編輯: sideshowbala 來自: 98.92.94.55 (02/14 01:50)
→
02/14 01:53, , 21F
02/14 01:53, 21F
推
02/14 21:53, , 22F
02/14 21:53, 22F
→
02/14 21:54, , 23F
02/14 21:54, 23F
→
02/14 21:55, , 24F
02/14 21:55, 24F
→
02/14 21:56, , 25F
02/14 21:56, 25F
→
02/14 21:56, , 26F
02/14 21:56, 26F
→
02/14 21:57, , 27F
02/14 21:57, 27F
→
02/14 21:57, , 28F
02/14 21:57, 28F
→
02/14 21:57, , 29F
02/14 21:57, 29F
→
02/14 21:58, , 30F
02/14 21:58, 30F
→
02/14 21:59, , 31F
02/14 21:59, 31F
→
02/14 22:00, , 32F
02/14 22:00, 32F
→
02/14 22:01, , 33F
02/14 22:01, 33F
推
02/14 22:09, , 34F
02/14 22:09, 34F
→
02/16 07:54, , 35F
02/16 07:54, 35F
→
02/16 07:55, , 36F
02/16 07:55, 36F