hijacking 2.9.2 and server completely down!!

kreatyve
(@kreatyve)

13 years, 9 months ago

Hi all,
3 days ago my wp has been hijacked with a loop of database requests putting down the entire server.

I changed the blog directory’s name, and updated to the latest version: 3
I reactivate the blog and after 1 minutes everything is down again!!!!

So… I suppose the corrupt script or whatever else is on the db now…
What can I do??
I checked on the db if there’s something strange but.. I haven’t found anything in particular.

Did you experience the same or is there some known bug?

Please helps
Thanks

Viewing 7 replies - 1 through 7 (of 7 total)

esmi
(@esmi)

13 years, 9 months ago

Have you tried:

– deactivating all plugins to see if this resolves the problem? If this works, re-activate the plugins one by one until you find the problematic plugin(s).

– switching to the default theme to rule out any theme-specific problems?

– resetting the plugins folder by FTP or phpMyAdmin? Sometimes, an apparently inactive plugin can still cause problems.

– reviewing http://wordpress.org/support/topic/411649

Thread Starter kreatyve
(@kreatyve)

13 years, 9 months ago

Hello Esmi,
yes I deactivated all plugins and reactivated but I couldn’t see where was the problem.
Do you think the malice code is now inside the plugins?

So maybe if i would delete them all and would make a fresh install this would fix the problem?

Now I’m going to read the topic you suggested.
I’ll keep you updated.

Thanks

esmi
(@esmi)

13 years, 9 months ago

Why do you think this might be a hack as opposed to a runaway plugin or theme?

Thread Starter kreatyve
(@kreatyve)

13 years, 9 months ago

Because there’s been lots of calls to db until the server gone down.
I had a look to the mysql and I saw the id 2086 have been duplicated more and more.

But if it wasn’t an hack I would be really happy!
Is there any method to check this point?

esmi
(@esmi)

13 years, 9 months ago

I’d suggest deactivating all plugins and leaving them inactive for a while. Even better, reset the plugins folder (how-to link above) to ensure that you’ve killed all plugins stone dead. Then monitor the site for a while and see if you get any db call peaks.

Right now, it could just be a runaway plugin. so let’s rule that out first – and any theme issues – before assuming the worst. A high number of db calls isn’t usually the first sign of a hack.

Thread Starter kreatyve
(@kreatyve)

13 years, 9 months ago

Ok after working NO STOP to this problem I’m going to giving up!!!
There’s no way to solve the situation, and I understand it’s not a plugin troubles.

Can you please help me to fix this?
Of course I’ll pay you for the job, If I’ll give you all the login and ftp details can you please working on it?

Please let me know
I really need to be online for really serious reasons.

Thanks

esmi
(@esmi)

13 years, 9 months ago

Try the WP-Pro mailing list:
http://lists.automattic.com/mailman/listinfo/wp-pro

Or http://jobs.wordpress.net/

Viewing 7 replies - 1 through 7 (of 7 total)

The topic ‘hijacking 2.9.2 and server completely down!!’ is closed to new replies.

hijacking 2.9.2 and server completely down!!

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics