我使用Wordpress,并有Wordfence(免费)在我的网站上观看,以确保人们没有做他们不该做的任何事情。我最近收到一封来自Wordfence的电子邮件,提醒我有关修改过的插件文件,我想知道这是我应该担心的事情吗?我不认为自己从未接受过电子邮件,只是做了我的正常插件更新。更新是否触发了这个?还是更多?WordPress插件修改警报
的WordPress版本和这样的:
-WordPress 4.4.2
-Headway Theme v. 3.8.8
-Wordfence (free) v. 6.0.24
-Google Captcha (reCAPTCHA) by BestWebSoft v. 1.22 (this is on the login page, so it should help block automated attacks...)
-My username is not a generic 'admin' or anything like that, and I have WordFence set to immediately lock out any invalid username login attempts.
-and my password is decently strong.
-I do have other various plugins that are up to date, I just mention the above because they are supposed to help with security.
我得到的信息是:
Alert generated at Thursday 25th of February 2016 at 11:41:32 PM
Warnings:
* Modified plugin file: wp-content/plugins/google-captcha/bws_menu/bws_functions.php
* Modified plugin file: wp-content/plugins/google-captcha/bws_menu/bws_menu.php
* Modified plugin file: wp-content/plugins/google-captcha/bws_menu/css/general_style.css
* Modified plugin file: wp-content/plugins/google-captcha/css/gglcptch.css
* Modified plugin file: wp-content/plugins/google-captcha/google-captcha.php
* Modified plugin file: wp-content/plugins/google-captcha/js/script.js
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-ar.mo
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-ar.po
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-bg_BG.mo
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-bg_BG.po
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-de_DE.mo
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-de_DE.po
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-el.mo
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-el.po
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-es_ES.mo
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-es_ES.po
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-fa_IR.mo
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-fa_IR.po
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-fr_FR.mo
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-fr_FR.po
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-hi.mo
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-hi.po
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-it_IT.mo
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-it_IT.po
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-pl_PL.mo
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-pl_PL.po
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-pt_BR.mo
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-pt_BR.po
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-ru_RU.mo
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-ru_RU.po
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-uk.mo
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-uk.po
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-zh_TW.mo
* Modified plugin file: wp-content/plugins/google-captcha/languages/google-captcha-zh_TW.po
* Modified plugin file: wp-content/plugins/google-captcha/readme.txt
* Modified plugin file: wp-content/plugins/google-captcha/screenshot-5.png
* Modified plugin file: wp-content/plugins/google-captcha/screenshot-6.png
* Modified plugin file: wp-content/plugins/google-captcha/screenshot-7.png
* Modified plugin file: wp-content/plugins/google-captcha/screenshot-8.png
* Modified plugin file: wp-content/plugins/jetpack/_inc/jetpack-jitm.js
* Modified plugin file: wp-content/plugins/jetpack/_inc/lib/admin-pages/class.jetpack-landing-page.php
* Modified plugin file: wp-content/plugins/jetpack/_inc/lib/markdown/gfm.php
* Modified plugin file: wp-content/plugins/jetpack/class.jetpack-modules-list-table.php
* Modified plugin file: wp-content/plugins/jetpack/class.jetpack-network.php
* Modified plugin file: wp-content/plugins/jetpack/class.jetpack.php
* Modified plugin file: wp-content/plugins/jetpack/class.json-api-endpoints.php
* Modified plugin file: wp-content/plugins/jetpack/class.json-api.php
* Modified plugin file: wp-content/plugins/jetpack/class.photon.php
* Modified plugin file: wp-content/plugins/jetpack/css/jetpack-admin.css.map
* Modified plugin file: wp-content/plugins/jetpack/functions.opengraph.php
* Modified plugin file: wp-content/plugins/jetpack/functions.photon.php
* Modified plugin file: wp-content/plugins/jetpack/jetpack.php
* Modified plugin file: wp-content/plugins/jetpack/json-endpoints/class.wpcom-json-api-delete-media-endpoint.php
* Modified plugin file: wp-content/plugins/jetpack/json-endpoints/class.wpcom-json-api-delete-media-v1-1-endpoint.php
* Modified plugin file: wp-content/plugins/jetpack/json-endpoints/class.wpcom-json-api-get-site-endpoint.php
* Modified plugin file: wp-content/plugins/jetpack/json-endpoints/class.wpcom-json-api-post-endpoint.php
* Modified plugin file: wp-content/plugins/jetpack/json-endpoints/class.wpcom-json-api-post-v1-1-endpoint.php
* Modified plugin file: wp-content/plugins/jetpack/json-endpoints/class.wpcom-json-api-sharing-buttons-endpoint.php
* Modified plugin file: wp-content/plugins/jetpack/json-endpoints/class.wpcom-json-api-update-post-endpoint.php
* Modified plugin file: wp-content/plugins/jetpack/json-endpoints/class.wpcom-json-api-update-post-v1-1-endpoint.php
* Modified plugin file: wp-content/plugins/jetpack/json-endpoints/class.wpcom-json-api-update-post-v1-2-endpoint.php
* Modified plugin file: wp-content/plugins/jetpack/json-endpoints.php
* Modified plugin file: wp-content/plugins/jetpack/locales.php
* Modified plugin file: wp-content/plugins/jetpack/modules/contact-form/grunion-contact-form.php
* Modified plugin file: wp-content/plugins/jetpack/modules/custom-post-types/comics.php
* Modified plugin file: wp-content/plugins/jetpack/modules/custom-post-types/js/many-items.js
* Modified plugin file: wp-content/plugins/jetpack/modules/custom-post-types/portfolios.php
* Modified plugin file: wp-content/plugins/jetpack/modules/custom-post-types/testimonial.php
* Modified plugin file: wp-content/plugins/jetpack/modules/latex.php
* Modified plugin file: wp-content/plugins/jetpack/modules/minileven.php
* Modified plugin file: wp-content/plugins/jetpack/modules/module-headings.php
* Modified plugin file: wp-content/plugins/jetpack/modules/module-info.php
* Modified plugin file: wp-content/plugins/jetpack/modules/publicize/ui.php
* Modified plugin file: wp-content/plugins/jetpack/modules/related-posts/jetpack-related-posts.php
* Modified plugin file: wp-content/plugins/jetpack/modules/related-posts/related-posts.js
* Modified plugin file: wp-content/plugins/jetpack/modules/shortcodes/archives.php
* Modified plugin file: wp-content/plugins/jetpack/modules/shortcodes/flickr.php
* Modified plugin file: wp-content/plugins/jetpack/modules/shortcodes/instagram.php
* Modified plugin file: wp-content/plugins/jetpack/modules/shortcodes/presentations.php
* Modified plugin file: wp-content/plugins/jetpack/modules/shortcodes/scribd.php
* Modified plugin file: wp-content/plugins/jetpack/modules/shortcodes/slideshare.php
* Modified plugin file: wp-content/plugins/jetpack/modules/shortcodes/soundcloud.php
* Modified plugin file: wp-content/plugins/jetpack/modules/shortcodes/ted.php
* Modified plugin file: wp-content/plugins/jetpack/modules/shortcodes/twitter-timeline.php
* Modified plugin file: wp-content/plugins/jetpack/modules/shortcodes/vimeo.php
* Modified plugin file: wp-content/plugins/jetpack/modules/shortcodes/wufoo.php
* Modified plugin file: wp-content/plugins/jetpack/modules/stats.php
* Modified plugin file: wp-content/plugins/jetpack/modules/theme-tools/random-redirect.php
* Modified plugin file: wp-content/plugins/jetpack/modules/theme-tools/site-logo/js/site-logo-control.js
* Modified plugin file: wp-content/plugins/jetpack/modules/videopress/videopress.php
* Modified plugin file: wp-content/plugins/jetpack/modules/widget-visibility/widget-conditions/widget-conditions.js
* Modified plugin file: wp-content/plugins/jetpack/modules/widget-visibility/widget-conditions.php
* Modified plugin file: wp-content/plugins/jetpack/modules/widgets/contact-info.php
* Modified plugin file: wp-content/plugins/jetpack/modules/widgets/top-posts.php
* Modified plugin file: wp-content/plugins/jetpack/modules/widgets/wordpress-post-widget.php
* Modified plugin file: wp-content/plugins/jetpack/readme.txt
* Modified plugin file: wp-content/plugins/jetpack/views/admin/my-jetpack-page.php
* Modified plugin file: wp-content/plugins/youtube-channel/readme.txt
是否有任何地方我可以检查什么,或者为什么会被修改?或者是IP做了什么改变或者类似的事情?我是唯一可以访问该网站的人,因为我没有任何朋友或家人或同事也可以进行更改。
我所做的唯一修改是通过WP仪表板中的更新工具进行更新。除此之外,我不做任何文件更改。我如何进一步调查?你会从这里采取什么措施? – Mxracer888
检查文件是否有恶意代码,删除插件并在必要时重新安装。 –