funkiegh
Forum Replies Created
-
Forum: Plugins
In reply to: [WooCommerce] WooCommerce Plugin v9.6.1 breaks site when ActivatingThanks for your reply, I’ve copied below the WP Debug output and this is after having increased the PHP script memory allocation from 64M to 128Mas shown (there were more such errors before doing that):
; Maximum amount of memory a script may consume (128MB)
; http://php.net/memory-limit
memory_limit = 128MDebug output:
[13-Feb-2025 15:11:34 UTC] PHP Fatal error: Allowed memory size of 67108864 bytes exhausted (tried to allocate 98304 bytes) in /hermes/bosnacweb07/bosnacweb07ae/b2129/ipg.bemintedcouk/sandh/wp-admin/includes/admin.php on line 31
[13-Feb-2025 15:11:34 UTC] PHP Fatal error: Allowed memory size of 67108864 bytes exhausted (tried to allocate 40960 bytes) in /hermes/bosnacweb07/bosnacweb07ae/b2129/ipg.bemintedcouk/sandh/wp-content/plugins/woocommerce/includes/class-wc-autoloader.php on line 54Regards.
Forum: Fixing WordPress
In reply to: WordPress Hacked with Infestation of Random PHP filesHi, the only information I’ve managed to find is from Googling the scan data from my host, who confirmed the infection. Just type “JCDEF.Obfus.CreateFunc.BackDoorEval-26.UNOFFICIAL FOUND” into Google and you’ll find lots of references to Pharma hacks. In fact that’s how I started noticing these files as I was investigating a Viagra link that suddenly appeared on my website in the header area. I got rid of the link by removing hack code from my functions.php file but I couldn’t figure what all these other files were doing. Maybe they are back-doors. Anyway I cleaned them all out, tightened my security, added some security plugins and I’ve not had any problem since. They were quite easy to find as all were between 5KB and 6.5KB in size and dated in 2012 – are yours similar?
Forum: Fixing WordPress
In reply to: WordPress Hacked with Infestation of Random PHP filesHi WPyogi, thanks for your reply. Yes, I’ve seen most of those. I’m mostly interested in the specifics of this attack, what it is intended to do (there doesn’t seem to be any problem with the sites) and if anyone has had similar. It’s why I’d posted some small code snippets to aid recognition.