WordPress.org

Ready to get started?Download WordPress

Forums

Anti-Malware (Get Off Malicious Scripts)
[resolved] Site Down after Plugin Activation (4 posts)

  1. johnqbuck
    Member
    Posted 1 year ago #

    Hi there,

    My site was recently blacklisted, so I installed your plugin to find any malware. Unfortunately, upon activation the entire site broke, and I now get this error:

    Fatal error: Unknown: Failed opening required '/data/5/0/52/144/215633/user/219093/cgi-bin/.php/sessions/sess_3fa452ae65160f235f6c2a14d3c5603f' (include_path='.:/usr/services/vux/lib/php') in Unknown on line 0

    Any idea what's going on?

    http://wordpress.org/extend/plugins/gotmls/

  2. Eli
    Member
    Plugin Author

    Posted 1 year ago #

    John,
    Thanks for sending me your FTP login. Removing my plugin was a good test to determine if that was what broke your site. With my plugin removed we can see tat the error is still there and is not related to your error.

    At first I thought that your server was just having trouble reading or writing to session files but then I noticed that the session file 'sess_3fa452ae65160f235f6c2a14d3c5603f' in your originally reported error is the same as the file name in the error that I get when I view the page. This indicates to me that it is not actually generated by the server trying to access the current session (because the server would generate a different file name for each visitor). Instead I believe that this file was was intended to contain malicious code but was either deleted or never written. Somewhere on your server there is a file that tells the site to include this file, and because the file is missing it is causing this error.

    I have downloaded and search the contents of all the files on your site that I have access to with the FTP credentials that you gave me and there is no mention of this session file. If this file is included from outside the public directory of this site then I would guess it is either in a php.ini file or .htaccess file in a directory higher up then this site directory.

    If you want extend my access to your server to include the parent directories then I will continue my search. However, maybe I have provided enough clues that you or Jason can find the include directive wherever it's hiding.

    Please keep me posted and let me know if I can be of any further assistance.

    Aloha, Eli

  3. johnqbuck
    Member
    Posted 1 year ago #

    Eli,

    Thanks for all your help!

    We got everything running. It appears there was a php.ini file above the root calling that "session" file.

    Thanks again!

  4. Eli
    Member
    Plugin Author

    Posted 1 year ago #

    Great!

    I'm glad I could help.

    Good job finding that php.ini file.

    Let me know if there is anything else I can do.

    Aloha, Eli

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags