Maurice v. R
asked on
PHP-Warning-feof-fread-filling-error-logs-and-disc usage in cpanel
Hello,
My disc usage under cpanel runs full in minutes and the error log is always:
(PHP Warning: feof() expects parameter 1 to be resource, boolean given in /home/qgzs8bjq/public_html /wp-conten t/wp-mbrxs mrs.php)
furthermore the bandwidth is always full as well.
I think it is the same problem like:
https://www.experts-exchange.com/questions/28477747/PHP-Warning-feof-fread-filling-error-logs-and-drive.html
but I don't know which code I have to place and were I have to place.
Could someone help me with that please?
Thanks a lot, Maurice
My disc usage under cpanel runs full in minutes and the error log is always:
(PHP Warning: feof() expects parameter 1 to be resource, boolean given in /home/qgzs8bjq/public_html
furthermore the bandwidth is always full as well.
I think it is the same problem like:
https://www.experts-exchange.com/questions/28477747/PHP-Warning-feof-fread-filling-error-logs-and-drive.html
but I don't know which code I have to place and were I have to place.
Could someone help me with that please?
Thanks a lot, Maurice
@Julian is correct. The likely fix is simply to check file open return code + just return, if there's an open error.
More importantly though, this file looks highly suspect... as in potentially part of a hack...
The file name + location suggest this site might have been hacked.
Likely good if you have a WordPress Server Savant go through your site + clean up any suspicious looking files.
More importantly though, this file looks highly suspect... as in potentially part of a hack...
The file name + location suggest this site might have been hacked.
Likely good if you have a WordPress Server Savant go through your site + clean up any suspicious looking files.
ASKER
Thanks for helping.
Julian, I just downloaded the index php from wp-content. please find attached.
David, how can I do this?
"Likely good if you have a WordPress Server Savant go through your site + clean up any suspicious looking files."
That might be also why the bandwidth is so high suddenly?
Sorry I am not an expert in this kind of thing.
index.php
Julian, I just downloaded the index php from wp-content. please find attached.
David, how can I do this?
"Likely good if you have a WordPress Server Savant go through your site + clean up any suspicious looking files."
That might be also why the bandwidth is so high suddenly?
Sorry I am not an expert in this kind of thing.
index.php
Julian, I just downloaded the index php from wp-content. please find attached.Nope, did not ask for the index.php I asked for the file that is actually causing the problem which if you look at the error message is this one
/home/qgzs8bjq/public_html
However, having looked at the file you posted - you have been hacked.
That file contains malicious code you do not want on your site.
You need to get a WP guru in and clean your site - pretty much a certainty that there are other files that have been breached as well.
That file contains malicious code you do not want on your site.
You need to get a WP guru in and clean your site - pretty much a certainty that there are other files that have been breached as well.
ASKER
Sorry Julian,
here it is the file.
oh gosh, thats a tricky one with that hack I guess. Do you know were to start with that?
Would it be an option to restore the whole page?
Is this file something I just can get rid of?
Thanks
wp-mbrxsmrs.php
here it is the file.
oh gosh, thats a tricky one with that hack I guess. Do you know were to start with that?
Would it be an option to restore the whole page?
Is this file something I just can get rid of?
Thanks
wp-mbrxsmrs.php
ASKER
furthermore I have this error log alway coming up....
error_log
error_log
This file is also part of the hack.
This is not something we can help you with in this forum - you need someone knowledgable to come and look at your site and clean it.
Then you need to consult with someone about hardening your WP site - installing measures to prevent this sort of breach in the future.
This is not something we can help you with in this forum - you need someone knowledgable to come and look at your site and clean it.
Then you need to consult with someone about hardening your WP site - installing measures to prevent this sort of breach in the future.
This question needs an answer!
Become an EE member today
7 DAY FREE TRIALMembers can start a 7-Day Free trial then enjoy unlimited access to the platform.
View membership options
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
I do not recognise that file - usually there is only one file in wp-content and that is index.php so this is probably a custom script that has not been written in a robust manner.
If you can post that script we can have a look to see what is going on.