Corporate website Poisoning 24-hour solution

Intermediary transaction http://www.aliyun.com/zixun/aggregation/6858.html ">seo diagnose Taobao guest cloud host technology Hall

A few days ago a customer's website unfortunately was hacked, the reason is likely to be placed in the directory of corporate Web wordpress program (3.04 version), here also remind everyone, as soon as possible to update their WordPress program, so as not to give hackers an opportunity. Corporate website is hacked, should be a lot of ordinary enterprise network administrators have encountered things, the site will not only make the Enterprise station SEO is affected, but also may directly bring negative impact, today I am here to share how I spent 24 hours to deal with this matter and eliminate the negative impact of the search. I'm a typical night owl, like most internet buddies, at that time more than eight in the morning, I just lay in bed, the client company called me to say that the site was poisoned, the site turned to a pornographic site, whether directly open the Web site or Baidu search content has become the content of other sites, I listen, this is not good, Be black OK, restore the program, find the reason is good, within a few minutes can affect control, but search content if not clear, this may be in the longer period of time affect the whole enterprise sales, all of a sudden sleepy all, immediately put the laptop open, sit on the bed repair site.

First: I do not rush to fix the program, I first package the infected program, and then delete all the Web site procedures, restore the backup program, while locking the Web site's FSO, so that the site first return to normal access, and prevent the intrusion again. Then unzip the packaged program to analyze the modified file, after careful analysis, found that the overall site procedures have not been modified, but the database has been the traces of intrusion, while in the directory more than a Global.asa, and then go to the program's official website forum, and did not find anyone who proposed the program was invaded posts, So I think there may not be a problem directly caused by the program, I looked into the program there is a blog directory, with the WordPress, found that the directory time is the same day, I went to the database to look at the same day, the program also did not update the content, I guess there is a possibility of hackers from this program to find out the problem into the So I downloaded the IIS log and looked up blog-related logs and found a file that was created and deleted the same morning. So I deleted the blog and opened the FSO of the website for observation.

Second: Now the Enterprise Station Basic solution, the next step is how to deal with Baidu search has been taken snapshots and included. We all know that if Baidu entered an update, then these included will be updated, the thing is simple, let Baidu update Enterprise station. So I did the following several things: on the update than the fast of their own website to send articles to guide the update, on a number of webmaster forum sent a few recruitment chain of posts to guide the update, to their own blog posted on the post chain.

Then sleep, sleep up and send a few more articles in the evening. Then work the other.

Very happy the next day Baidu updated the enterprise station as scheduled, eliminating the impact of the inclusion.

This article started A5, at the same time sent to my personal blog, blog.jxun.net. If a novice encounters a similar problem and does not know how to solve or have questions, please add my qq:754863600 and provide free help.