حملات هک و نفوذ رو وب سایت ام

**tabtak** · November 19th, 2018, 17:47

دوستان چند وقت هست که حملات رو وب سایتم رو دارم میتونید یه توضیح در این باب بدید

This email was sent from your website https://nane-salem.ir and is a summary of security related activity that Wordfence monitors for the period November 12, 2018 to November 19, 2018. NOTE: You are using the free version of Wordfence and are missing out on features like cellphone sign-in, country blocking and detecting if your site IP is sending spam. Click here to upgrade to Wordfence Premium now.
Top 10 IPs Blocked

IP	Country	Block Count
193.169.252.181	PL	10
51.75.193.40	FR	10
133.18.207.181	JP	1
158.69.162.109	CA	1

Update Blocked IPs
Top 10 Countries Blocked

Country	Total IPs Blocked	Block Count
FR	1	10
PL	1	9
JP	1	1
CA	1	1

Update Blocked Countries
Top 10 Failed Logins

Username	Login Attempts	Existing User
No failed logins yet.

Update Login Security Options
Recently Blocked Attacks

Time	IP / Action
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for Malicious File Upload (Patterns)
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for Malicious File Upload (Patterns)
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for jQuery HTML5 File Upload <= 3.0 - Unauthenticated Options Update and Arbitrary File Upload
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for a Malicious File Upload in file: upload=sfn.php
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for a Malicious File Upload in file: upload=sfn.php
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for Malicious File Upload (Patterns)
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for Malicious File Upload (Patterns)
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for Slider Revolution: Arbitrary File Upload
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for a Malicious File Upload in file: yiw_contact=sfn.php
November 19, 2018 6:43am	51.75.193.40 (France) Blocked for a Malicious File Upload in file: files=WyHHQVyg.php

View Recent Traffic
Recently Modified Files

Modified	File
November 19, 2018 3:54pm	error_log
November 19, 2018 3:40pm	wp-admin/error_log
November 19, 2018 3:08pm	.htaccess
November 19, 2018 3:08pm	wp-content/.htaccess
November 19, 2018 9:57am	wp-content/plugins/aparat/tinyMCE/editor_plugin.js
November 19, 2018 9:57am	wp-content/plugins/aparat/index.php
November 19, 2018 9:57am	wp-content/plugins/aparat/readme.txt
November 19, 2018 9:57am	wp-content/plugins/aparat/tinyMCE/aparat.png
November 17, 2018 9:41am	wp-content/languages/plugins/gutenberg-ar.po
November 17, 2018 9:41am	wp-content/languages/plugins/gutenberg-ar.mo

This list may include WordPress core/plugin/theme updates, error logs, cache files, and other normal changes.
Updates Needed

No updates are available at this time.
If you would like to sign-in to https://nane-salem.ir please click here now. You can change the frequency of this email or turn it on and off by visiting your Wordfence options page.
No longer an administrator for this site? Click here to stop receiving security alerts.

This email was sent from your website https://nane-salem.ir and is a summary of security related activity that Wordfence monitors for the period November 12, 2018 to November 19, 2018. NOTE: You are using the free version of Wordfence and are missing out on features like cellphone sign-in, country blocking and detecting if your site IP is sending spam. Click here to upgrade to Wordfence Premium now.
Top 10 IPs Blocked

IP	Country	Block Count
193.169.252.181	PL	10
51.75.193.40	FR	10
133.18.207.181	JP	1
158.69.162.109	CA	1

Update Blocked IPs
Top 10 Countries Blocked

Country	Total IPs Blocked	Block Count
FR	1	10
PL	1	9
JP	1	1
CA	1	1

Update Blocked Countries
Top 10 Failed Logins

Username	Login Attempts	Existing User
No failed logins yet.

Update Login Security Options
Recently Blocked Attacks

Time	IP / Action
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for Malicious File Upload (Patterns)
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for Malicious File Upload (Patterns)
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for jQuery HTML5 File Upload <= 3.0 - Unauthenticated Options Update and Arbitrary File Upload
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for a Malicious File Upload in file: upload=sfn.php
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for a Malicious File Upload in file: upload=sfn.php
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for Malicious File Upload (Patterns)
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for Malicious File Upload (Patterns)
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for Slider Revolution: Arbitrary File Upload
November 19, 2018 12:15pm	193.169.252.181 (Poland) Blocked for a Malicious File Upload in file: yiw_contact=sfn.php
November 19, 2018 6:43am	51.75.193.40 (France) Blocked for a Malicious File Upload in file: files=WyHHQVyg.php

View Recent Traffic
Recently Modified Files

Modified	File
November 19, 2018 3:54pm	error_log
November 19, 2018 3:40pm	wp-admin/error_log
November 19, 2018 3:08pm	.htaccess
November 19, 2018 3:08pm	wp-content/.htaccess
November 19, 2018 9:57am	wp-content/plugins/aparat/tinyMCE/editor_plugin.js
November 19, 2018 9:57am	wp-content/plugins/aparat/index.php
November 19, 2018 9:57am	wp-content/plugins/aparat/readme.txt
November 19, 2018 9:57am	wp-content/plugins/aparat/tinyMCE/aparat.png
November 17, 2018 9:41am	wp-content/languages/plugins/gutenberg-ar.po
November 17, 2018 9:41am	wp-content/languages/plugins/gutenberg-ar.mo

This list may include WordPress core/plugin/theme updates, error logs, cache files, and other normal changes.
Updates Needed

No updates are available at this time.
If you would like to sign-in to https://nane-salem.ir please click here now. You can change the frequency of this email or turn it on and off by visiting your Wordfence options page.
No longer an administrator for this site? Click here to stop receiving security alerts.

**tabtak** · November 19th, 2018, 21:00

up
up
up

**soxmox** · November 20th, 2018, 00:17

همش واضحه هس دوست گرامی این افزونه ای نصب کردین روی وردپرس براتون جلوی یک سری حمله ها رو گرفته و ای پی ها و حملاتی رو که صورت گرفته بلاک کرده البته فالس الرت هم توش زیاد دیده میشه

**tabtak** · November 20th, 2018, 00:20

نوشته اصلی توسط soxmox

همش واضحه هس دوست گرامی این افزونه ای نصب کردین روی وردپرس براتون جلوی یک سری حمله ها رو گرفته و ای پی ها و حملاتی رو که صورت گرفته بلاک کرده البته فالس الرت هم توش زیاد دیده میشه

خب الان باید هیچ کاری انجام ندم

**soxmox** · November 20th, 2018, 00:22

نه لازم به انجام کاری نیست

**~~gdfire~~** · November 20th, 2018, 01:55

چیز مهمی نی

**SIBHost** · November 28th, 2018, 13:03

درود بر شما
چیز خاصی نیست، این تعداد اتک برای سایت های وردپرس معمولا اتفاق میوفته.

فایل های xmlrpc.php , readme.html , license.txt رو از مسیر اصلی سایت حذف کنید یا انتقال/تغییر نام بدید.(جلوگیری از تشخصی نسخه وردپرس - جلوگیری از حملات xmlrpc)
مجوز دسترسی فایل های wp-config و htaccess رو روی 444 قرار بدید
معمولا اتک های وردپرس باید توسط هاست شناسایی و دفع بشه، از هاستینگ یک گزارش درباره اتک ها بگیرید، ببینید کجا رو هدف میدن، اونجا رو تقویت کنید.
برای مثال اگر بروت فورس دارید، آدرس wp-admin و wp-login رو تغییر بدید تا حملات به مقدار قابل توجهی کاهش پیدا کنند.

موفق باشید

موضوع: حملات هک و نفوذ رو وب سایت ام

ابزارهای موضوع

نحوه نمایش موضوع

حملات هک و نفوذ رو وب سایت ام

پاسخ : حملات هک و نفوذ رو وب سایت ام

پاسخ : حملات هک و نفوذ رو وب سایت ام

تعداد تشکر ها از soxmox به دلیل پست مفید

پاسخ : حملات هک و نفوذ رو وب سایت ام

تعداد تشکر ها از tabtak به دلیل پست مفید

پاسخ : حملات هک و نفوذ رو وب سایت ام

تعداد تشکر ها از soxmox به دلیل پست مفید

پاسخ : حملات هک و نفوذ رو وب سایت ام

تعداد تشکر ها از gdfire به دلیل پست مفید

پاسخ : حملات هک و نفوذ رو وب سایت ام

اطلاعات موضوع

کاربرانی که در حال مشاهده این موضوع هستند

مجوز های ارسال و ویرایش