$conf, $runtime; function_exists('chdir') AND chdir(APP_PATH); $r = 'mysql' == $conf['cache']['type'] ? website_set('runtime', $runtime) : cache_set('runtime', $runtime); } function runtime_truncate() { global $conf; 'mysql' == $conf['cache']['type'] ? website_set('runtime', '') : cache_delete('runtime'); } register_shutdown_function('runtime_save'); ?>plugins - Some one is trying to hack my website, Need guidance|Programmer puzzle solving

Programmer puzzle solving

    最新消息:Welcome to the puzzle paradise for programmers! Here, a well-designed puzzle awaits you. From code logic puzzles to algorithmic challenges, each level is closely centered on the programmer's expertise and skills. Whether you're a novice programmer or an experienced tech guru, you'll find your own challenges on this site. In the process of solving puzzles, you can not only exercise your thinking skills, but also deepen your understanding and application of programming knowledge. Come to start this puzzle journey full of wisdom and challenges, with many programmers to compete with each other and show your programming wisdom! Translated with DeepL.com (free version)
    你的位置: HOME>matter>plugins - Some one is trying to hack my website, Need guidance

    plugins - Some one is trying to hack my website, Need guidance

    matteradmin9PV0评论
    Closed. This question is off-topic. It is not currently accepting answers.

    Questions that are too localized (such as syntax errors, code with restricted access, hacked sites, hosting or support issues) are not in scope. See how do I ask a good question?

    Closed 6 years ago.

    Improve this question

    There are multiple IPs that are trying to access my directories. I am using iThemes Security plugin and it shows the following lists.

    These are the files all of the IPs are trying to access every minute.

    https://www.{My Website Name}/tag/feed/

https://www.{My Website Name}/premium-titanium/undefined

https://www.{My Website Name}/wp-content/uploads/2017/11/supra-on-wood.jpg

https://www.{My Website Name}/product/classic-sports-piece/

http://www.{My Website Name}/wp-content/plugins/apikey/wp-surf.php?test=hello

    There are a total of 2700+ entries and they are increasing minute by minute.

    Is there any way that I can block any IP that accesses these URLS?

    http://www.{My Website Name}/wp-content/plugins/apikey/wp-surf.php?test=hello

https://www.{My Website Name}/tag/feed/

https://www.{My Website Name}/premium-titanium/undefined
    Closed. This question is off-topic. It is not currently accepting answers.

    Questions that are too localized (such as syntax errors, code with restricted access, hacked sites, hosting or support issues) are not in scope. See how do I ask a good question?

    Closed 6 years ago.

    Improve this question

    There are multiple IPs that are trying to access my directories. I am using iThemes Security plugin and it shows the following lists.

    These are the files all of the IPs are trying to access every minute.

    https://www.{My Website Name}/tag/feed/

https://www.{My Website Name}/premium-titanium/undefined

https://www.{My Website Name}/wp-content/uploads/2017/11/supra-on-wood.jpg

https://www.{My Website Name}/product/classic-sports-piece/

http://www.{My Website Name}/wp-content/plugins/apikey/wp-surf.php?test=hello

    There are a total of 2700+ entries and they are increasing minute by minute.

    Is there any way that I can block any IP that accesses these URLS?

    http://www.{My Website Name}/wp-content/plugins/apikey/wp-surf.php?test=hello

https://www.{My Website Name}/tag/feed/

https://www.{My Website Name}/premium-titanium/undefined
    • plugins
    • 404-error
    • hacked
    • hacks
    Share Improve this question edited Oct 21, 2018 at 14:30 fuxia 107k39 gold badges255 silver badges461 bronze badges asked Oct 21, 2018 at 14:29 SyedSyed 1011 bronze badge
    Add a comment  | 

    1 Answer 1

    Reset to default 3

    Your hosting place may have an IP Blocking via the cPanel; you could use that.

    And there are various plugins that will do it also.

    You could also do it with the htaccess file in the root of your WP installation; place these lines before the WordPress lines:

    order allow,deny deny from 127.0.0.1 allow from all

    Change the IP address as needed.

    Added

    If you want to block access to specific files, then look at the answer here: https://stackoverflow/questions/11728976/how-to-deny-access-to-a-file-in-htaccess .

    And this answer tells how to block specific IP addresses to specific files: https://stackoverflow/questions/3604526/htaccess-how-to-restrict-access-to-a-single-file-by-ip

    Note that hackers often change their IP address, so your blocking may not be effective.

    I'd also ensure that the plugins/themes being attacked don't have vulnerabilities that would make the 'attack' successful. For that, you need to contact the plugin/theme support.

    And, unless there are DDOS-type attacking going on against your site, the effort to block may not be worth it.

    Articles related to this article

    Post a comment

    comment list (0)

    1. No comments so far